A vulnerability classified as critical has been found in agenticmail mcp up to 0.9.26 . This affects an unknown part. The manipulation leads to missing authentication. This vulnerability is documented as CVE-2026-50287 . The attack can be initiated remotely. There is not any exploit available. It is recommended to upgrade the affected component.