CVE-2026-41232 — Froxlor is open source server administration software.

/MEDIUM /CVSS 5/10
Written by SCW Vulnerability Desk Vulnerability Intelligence
National Vulnerability Database vulnerabilitycvemedium-severitycwe-863
CVE-2026-41232 — Froxlor is open source server administration software.

CVE-2026-41232 — Froxlor is open source server administration software. Prior to version 2.3.6, in `EmailSender::add()`, the domain ownership validation for full email sender aliases uses the wrong array index when splitting the email address, passing the local part instead of the domain to `validat

What This Means For You

  • If your environment is affected by CWE-863, review your exposure and prioritize patching based on your environment. Monitor vendor advisories for CVE-2026-41232 updates and patches.

Related ATT&CK Techniques

T1190 Exploit Public-Facing Application Initial Access T1098.004 Account Manipulation: SSH Authorized Keys Privilege Escalation T1537 Transfer Data to Cloud Account Lateral Movement

🛡️ Detection Rules

3 rules · 6 SIEM formats

3 detection rules auto-generated for this incident, mapped to MITRE ATT&CK. Sigma YAML is free — export to any SIEM format via the Intel Bot.

medium T1190 Initial Access

Froxlor Email Alias Spoofing Attempt — CVE-2026-41232

Sigma YAML — free preview
✓ Sigma · Splunk SPL Sentinel KQL Elastic QRadar AQL Wazuh Export via Bot →

Indicators of Compromise

IDTypeIndicator
CVE-2026-41232 vulnerability CVE-2026-41232
CWE-863 weakness CWE-863

Written by SCW Vulnerability Desk

Source & Attribution
Source PlatformNVD
ChannelNational Vulnerability Database
PublishedApril 23, 2026 at 08:16 UTC

This content was curated and summarized by Shimi's Cyber World for informational purposes. It is not copied or republished in full. All intellectual property rights remain with the original author and source.

Believe this infringes your rights? Submit a takedown request.

Related Posts

GROWI ReDoS Vulnerability (CVE-2026-41040) Poses High DoS Risk

CVE-2026-41040 — GROWI provided by GROWI, Inc. is vulnerable to a regular expression denial of service (ReDoS) via a crafted input string.

vulnerabilityCVEhigh-severitydenial-of-servicecwe-1333
/SCW Vulnerability Desk /HIGH /7.5 /⚑ 3 IOCs /⚙ 2 Sigma

IP Setting Software Vulnerability Allows Arbitrary Code Execution

CVE-2026-34488 — IP Setting Software contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries. As a result,...

vulnerabilityCVEhigh-severitycwe-427
/SCW Vulnerability Desk /HIGH /7.3 /⚑ 2 IOCs /⚙ 3 Sigma

CVE-2026-41990 — Libgcrypt before 1.12.2 mishandles Dilithium signing.

CVE-2026-41990 — Libgcrypt before 1.12.2 mishandles Dilithium signing. Writes to a static array lack a bounds check but do not use attacker-controlled data.

vulnerabilityCVEmedium-severitycwe-787
/SCW Vulnerability Desk /MEDIUM /4 /⚑ 2 IOCs /⚙ 1 Sigma