CVE-2025-34427

MailEnable < 10.54 Cleartext Credential Storage in AUTH.TAB

CVSS 8.4 HIGHEPSS 0.1%CWE-312

Vexday Risk Score

21Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS 8.4EPSS 0.1%KEV nãoPoC —Nuclei —Metasploit —Patch referenciado

Lifecycle

10 Dec 2025Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

MailEnable versions prior to 10.54 contain a cleartext storage of credentials vulnerability that can lead to local credential compromise and account takeover. The product stores user and administrative passwords in plaintext within AUTH.TAB with overly permissive filesystem access. A local authenticated user with read access to this file can recover all user passwords and super-admin credentials, then use them to authenticate to MailEnable services such as POP3, SMTP, or the webmail interface, enabling unauthorized mailbox access and administrative control.

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

Affected products

MailEnable · MailEnable

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://mailenable.com/Standard-ReleaseNotes.txt https://www.mailenable.com/https://www.vulncheck.com/advisories/mailenable-cleartext-credential-storage-in-auth-tab