CVE-2026-40020 | Open-Xchange OX Dovecot Pro up to 2.3.0 access control (adv-2026-0002 / EUVD-2026-29471)

A vulnerability identified as critical has been detected in Open-Xchange OX Dovecot Pro up to 2.3.0. The impacted element is an unknown function. The manipulation leads to improper access controls.

This vulnerability is traded as CVE-2026-40020. It is possible to initiate the attack remotely. There is no exploit available.

You should upgrade the affected component.VulDB Recent EntriesRead More