# CVE-2025-52691

> Successful exploitation of the vulnerability could allow an unauthenticated attacker to upload arbitrary files to any location on the mail server, potentially enabling remote code execution.

- **CVSS:** 10 (CRITICAL)
- **EPSS:** 87.3%
- **CISA KEV:** yes
- **CWE:** CWE-434

Canonical: https://intel.threadlinqs.com/cve/CVE-2025-52691
Full threat coverage + IOCs via the Threadlinqs MCP server (Purple tier): https://intel.threadlinqs.com/mcp