CVE-2026-22239 – This vulnerability in BLUVOYIX allows unauthent... (How to Fix)

📋 TL;DR

This vulnerability in BLUVOYIX allows unauthenticated attackers to send spam emails using the company's email sending API. Any organization using the vulnerable BLUVOYIX software is affected. The flaw stems from insufficient input validation in the email API.

💻 Affected Systems

Products:

BLUVOYIX

Versions: Unknown - check vendor advisory

Operating Systems: All platforms running BLUVOYIX

Default Config Vulnerable: ⚠️ Yes

Notes: Affects systems with the email sending API exposed without proper authentication controls.

📦 What is this software?

Bluvoyix by Blusparkglobal

View all CVEs affecting Bluvoyix →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Massive spam campaigns sent from your organization's infrastructure, damaging reputation, causing blacklisting of email servers, and potential legal/regulatory consequences.

🟠

Likely Case

Spam emails sent to contacts, causing reputation damage and potential email deliverability issues.

🟢

If Mitigated

Limited or no impact if API is properly secured with authentication and rate limiting.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploitation requires sending specially crafted HTTP requests to the vulnerable endpoint.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: https://blusparkglobal.com/bluvoyix/

Restart Required: No

Instructions:

1. Check vendor advisory for patch availability
2. Apply vendor-provided patch
3. Test email functionality after patching

🔧 Temporary Workarounds

Implement API Authentication

all

Add authentication requirements to the email sending API endpoint

Configuration specific to your API gateway or application

Restrict API Access

linux

Limit access to the email API endpoint using network controls

iptables -A INPUT -p tcp --dport [API_PORT] -s [TRUSTED_NETWORK] -j ACCEPT
iptables -A INPUT -p tcp --dport [API_PORT] -j DROP

🧯 If You Can't Patch

Implement strong authentication on the email API endpoint
Deploy rate limiting and input validation for email sending requests

🔍 How to Verify

Check if Vulnerable:

Test if unauthenticated HTTP POST requests to the email API endpoint can send emails

Check Version:

Check BLUVOYIX documentation or admin interface for version information

Verify Fix Applied:

Verify that authentication is required for email API requests and test with invalid credentials

📡 Detection & Monitoring

Log Indicators:

Unusual volume of email API requests
Email sending from unauthenticated sources
Failed authentication attempts followed by successful email sends

Network Indicators:

High volume of HTTP POST requests to email API endpoint
Requests from unexpected IP addresses to email API

SIEM Query:

source="email_api" AND (action="send" AND auth_status="failed") | stats count by src_ip

📊 Metadata

CVE ID: CVE-2026-22239

CVSS v3 Score: 5.3 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

CWE: CWE-400

EPSS Score: 0.09% exploit probability (25.7th percentile)

Published: January 14, 2026

Last Updated: February 2, 2026

🔗 References

https://blusparkglobal.com/bluvoyix/ Product

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2026-22239, you might also want to check these: