Lucene search
K

6 matches found

EUVD
EUVD
added 2026/04/30 12:0 a.m.6 views

EUVD-2026-26445

In Exim before 4.99.2, when the SPA authentication driver is used with an adversarial SPA resource, there can be an out-of-bounds write that crashes the connection instance, or erroneous data processing that divulges data from uninitialized heap memory...

9.8CVSS5.2AI score0.00373EPSS
Exploits0References4
CVE
CVE
added 2026/04/30 12:0 a.m.31 views

CVE-2026-40687

CVE-2026-40687 affects Exim before 4.99.2. When the SPA authentication driver is used with an adversarial SPA resource, an out-of-bounds write can crash the connection instance, or erroneous data processing can divulge data from uninitialized heap memory. Connected sources consistently describe t...

9.1CVSS5.2AI score0.00373EPSS
Exploits0References4Affected Software1
AlpineLinux
AlpineLinux
added 2026/04/30 12:0 a.m.6 views

CVE-2026-40687

In Exim before 4.99.2, when the SPA authentication driver is used with an adversarial SPA resource, there can be an out-of-bounds write that crashes the connection instance, or erroneous data processing that divulges data from uninitialized heap memory...

9.1CVSS5.8AI score0.00373EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/04/30 12:0 a.m.7 views

CVE-2026-40687

In Exim before 4.99.2, when the SPA authentication driver is used with an adversarial SPA resource, there can be an out-of-bounds write that crashes the connection instance, or erroneous data processing that divulges data from uninitialized heap memory...

9.8CVSS5.2AI score0.00373EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/04/30 12:0 a.m.58 views

CVE-2026-40687

In Exim before 4.99.2, when the SPA authentication driver is used with an adversarial SPA resource, there can be an out-of-bounds write that crashes the connection instance, or erroneous data processing that divulges data from uninitialized heap memory...

4.8CVSS0.00373EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/04/29 12:0 a.m.8 views

PT-2026-36198

Name of the Vulnerable Software and Affected Versions Exim versions prior to 4.99.2 Description When the SPA authentication driver is used with an adversarial SPA resource, an out-of-bounds write can occur, leading to a crash of the connection instance. Additionally, erroneous data processing may...

9.8CVSS5.8AI score0.00373EPSS
Exploits0References27
Rows per page
Query Builder