Known exploited
Qualitia
CVE published 2025-04-28
CVE-2025-42599
CVE-2025-42599 is a Qualitia Active! Mail stack-based buffer overflow vulnerability that CISA added to its Known Exploited Vulnerabilities catalog on 2025-04-28. Because it is listed in KEV, defenders should treat it as urgent: confirm exposure, apply vendor mitigations, and remove or discontinue the product if mitigations are not available.