Postfix
Security Risk Profile
41
/100
mediumSecurity Risk Score
Comprehensive risk assessment based on 52 vulnerabilities, EPSS scores, exploitation status, and remediation availability.
📅 Data spans from August 18, 2008 to present
52
Total CVEs
2
Critical+High
0
Exploited
0
Unpatched
Threat Assessment
Avg CVSS
5.7
Base severity
Avg EPSS
0%
Exploit probability
Unpatched
0
Critical/High
Risk Level
41/100
medium
🆕 1Fresh (<7d)📈 1 in Last 30 Days
Severity Distribution
Critical
0High
2Medium
9Low
2Exploit Likelihood
>50% chance
020-50%
05-20%
0<5%
0Age Distribution
Common Weaknesses (CWE)
1
SQL Injection
1
2
Buffer Overflow
1
3
Command Injection
1
4
Input Validation
1
5
Infoleak
1
Most Affected Products
1. Postfix Postfix298
2. redhat/postfix7
3. Sendmail Sendmail6
4. debian/postfix3
5. Exim Exim3
Recent Vulnerabilities
See more →https://seclists.org/oss-sec/2026/q2/406
unknown
[pfx] Postfix stable lease 3.11.2 and legacy leases 3.10.9, 3.9.10, 3.8.16
5/5/2026🔧 No Patch
https://seclists.org/oss-sec/2026/q2/398
unknown
Fwd: [pfx] Postfix stable lease 3.11.2 and legacy leases 3.10.9, 3.9.10, 3.8.16
5/4/2026🔧 No Patch
CVE-2026-43964
CVSS 7.5high
5/4/2026
https://seclists.org/oss-sec/2026/q2/394
unknown
[pfx] Postfix stable lease 3.11.2 and legacy leases 3.10.9, 3.9.10, 3.8.16
5/4/2026🔧 No Patch
https://seclists.org/oss-sec/2026/q2/393
unknown
Fwd: [pfx] Postfix stable lease 3.11.2 and legacy leases 3.10.9, 3.9.10, 3.8.16
5/4/2026🔧 No Patch
EOL-postfix-3.11
unknown
3/6/2026
EOL-postfix-3.10
unknown
2/16/2025
EOL-postfix-3.7
unknown
12/5/2024
latest-version-postfix-3.7
unknown
12/5/2024
https://seclists.org/oss-sec/2024/q2/229
unknown
New SMTP smuggling attack
5/8/2024🔧 No Patch
Monitor Postfix in Real-Time
Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.