Description
MailKit is a cross-platform mail client library built on top of MimeKit. A STARTTLS Response Injection vulnerability in versions prior to 4.16.0 allows a Man-in-the-Middle attacker to inject arbitrary protocol responses across the plaintext-to-TLS trust boundary, enabling SASL authentication mechanism downgrade (e.g., forcing PLAIN instead of SCRAM-SHA-256). The internal read buffer in `SmtpStream`, `ImapStream`, and `Pop3Stream` is not flushed when the underlying stream is replaced with `SslStream` during STARTTLS upgrade, causing pre-TLS attacker-injected data to be processed as trusted post-TLS responses. Version 4.16.0 patches the issue.
Published: 2026-04-24
Score: 6.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Authentication mechanism downgrade via injected STARTTLS responses
Action: Assess Impact
AI Analysis

Impact

MailKit versions prior to 4.16.0 contain a STARTTLS Response Injection flaw in the stream handling code. An attacker who can perform a man‑in‑the‑middle (MITM) on the email session can inject arbitrary protocol responses before the TLS upgrade. Those injected responses are processed after the stream is wrapped in SSL, allowing the attacker to force the client to authenticate with weaker SASL mechanisms such as PLAIN instead of stronger SCRAM series. This can lead to credential theft or unauthorized access if weak authentication is used.

Affected Systems

The affected product is jstedfast MailKit. All releases before 4.16.0 are vulnerable; the issue is fixed in MailKit 4.16.0 and later. Any application that references an older MailKit library is at risk, regardless of the underlying mail protocol (SMTP, IMAP, POP3).

Risk and Exploitability

The CVSS score of 6.5 indicates a moderate severity in the context of authentication downgrade. The EPSS score of less than 1% shows that current exploitation activity appears very low. MailKit is not listed in the CISA KEV catalog. The likely attack vector requires a MITM that can intercept the plaintext phase of the connection; the attacker does not need any special privileges on the client machine. Although exploitation probability is low, the impact of successfully downgrading to a weak SASL mechanism is significant for systems relying on strong authentication.

Generated by OpenCVE AI on April 28, 2026 at 14:25 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update MailKit to version 4.16.0 or later
  • Configure the mail client to enforce strict TLS and reject any unauthenticated or downgraded authentication responses
  • Disable weak SASL mechanisms such as PLAIN over TLS on the mail server to prevent downgrade attacks

Generated by OpenCVE AI on April 28, 2026 at 14:25 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-9j88-vvj5-vhgr MailKit has STARTTLS Response Injection via unflushed stream buffer that enables SASL mechanism downgrade
History

Thu, 21 May 2026 19:45:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:mimekit:mailkit:*:*:*:*:*:*:*:* cpe:2.3:a:jstedfast:mailkit:*:*:*:*:*:*:*:*
Vendors & Products Mimekit
Mimekit mailkit

Thu, 21 May 2026 18:30:00 +0000

Type Values Removed Values Added
First Time appeared Mimekit
Mimekit mailkit
CPEs cpe:2.3:a:mimekit:mailkit:*:*:*:*:*:*:*:*
Vendors & Products Mimekit
Mimekit mailkit

Tue, 28 Apr 2026 09:45:00 +0000

Type Values Removed Values Added
First Time appeared Jstedfast
Jstedfast mailkit
Vendors & Products Jstedfast
Jstedfast mailkit

Sat, 25 Apr 2026 02:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 24 Apr 2026 04:00:00 +0000

Type Values Removed Values Added
Description MailKit is a cross-platform mail client library built on top of MimeKit. A STARTTLS Response Injection vulnerability in versions prior to 4.16.0 allows a Man-in-the-Middle attacker to inject arbitrary protocol responses across the plaintext-to-TLS trust boundary, enabling SASL authentication mechanism downgrade (e.g., forcing PLAIN instead of SCRAM-SHA-256). The internal read buffer in `SmtpStream`, `ImapStream`, and `Pop3Stream` is not flushed when the underlying stream is replaced with `SslStream` during STARTTLS upgrade, causing pre-TLS attacker-injected data to be processed as trusted post-TLS responses. Version 4.16.0 patches the issue.
Title MailKit has STARTTLS Response Injection via unflushed stream buffer that enables SASL mechanism downgrade
Weaknesses CWE-74
References
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N'}

Subscriptions

Jstedfast Mailkit
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-04-25T01:46:35.002Z

Reserved: 2026-04-20T14:01:46.671Z

Link: CVE-2026-41319

cve-icon Vulnrichment

Updated: 2026-04-25T01:46:30.490Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-24T04:16:20.400

Modified: 2026-05-21T19:39:07.493

Link: CVE-2026-41319

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T14:30:33Z

Weaknesses