A vulnerability identified as problematic has been detected in SmarterTools SmarterMail up to 100.0.9609 . Affected is an unknown function of the component Attachment Download Endpoint . This manipulation causes cryptographically weak prng. The identification of this vulnerability is CVE-2026-40514 . It is possible to initiate the attack remotely. There is no exploit available. You should upgrade the affected component.