Lucene search
+L

2188 matches found

NVD
NVD
added 2026/05/30 2:16 a.m.19 views

CVE-2026-48840

Exim 4.88 before 4.99.4, in some proxy configurations, mishandles certain short payloads, leading to disclosure of uninitialized stack memory values to a client...

5.3CVSS0.00264EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/30 1:50 a.m.16 views

EUVD-2026-33446

Exim 4.88 before 4.99.4, in some proxy configurations, mishandles certain short payloads, leading to disclosure of uninitialized stack memory values to a client...

5.3CVSS5.8AI score0.00264EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/30 1:50 a.m.12 views

CVE-2026-48840

Exim 4.88 before 4.99.4, in some proxy configurations, mishandles certain short payloads, leading to disclosure of uninitialized stack memory values to a client...

5.3CVSS5.8AI score0.00264EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/30 1:50 a.m.13 views

CVE-2026-48840

Exim 4.88 before 4.99.4, in some proxy configurations, mishandles certain short payloads, leading to disclosure of uninitialized stack memory values to a client...

5.3CVSS5.8AI score0.00264EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/05/30 1:50 a.m.83 views

CVE-2026-48840

Exim 4.88 before 4.99.4, in some proxy configurations, mishandles certain short payloads, leading to disclosure of uninitialized stack memory values to a client...

5.3CVSS0.00264EPSS
Exploits0References2
CVE
CVE
added 2026/05/30 1:50 a.m.129 views

CVE-2026-48840

Exim is affected: Exim 4.88 prior to 4.99.4 in certain PROXY configurations mishandles short payloads, causing disclosure of uninitialized stack memory to a client. The issue centers on the PROXY-protocol handling, enabling an information disclosure in configurations with SUPPORT_PROXY and host_p...

5.3CVSS5.8AI score0.00264EPSS
Exploits0References4Affected Software1
AlpineLinux
AlpineLinux
added 2026/05/30 1:50 a.m.21 views

CVE-2026-48840

Exim 4.88 before 4.99.4, in some proxy configurations, mishandles certain short payloads, leading to disclosure of uninitialized stack memory values to a client...

5.3CVSS5.8AI score0.00264EPSS
Exploits0
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.13 views

Exim 安全漏洞

Exim is an open-source message transfer agent MTA developed by Exim Software, running on Unix systems. It primarily handles the routing, forwarding, and delivery of emails. Versions of Exim from 4.88 to 4.99.4 contained security vulnerabilities. These vulnerabilities stemmed from improper handlin...

5.3CVSS5.8AI score0.00264EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/30 12:0 a.m.15 views

Linux Distros Unpatched Vulnerability : CVE-2026-48840

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Exim 4.88 before 4.99.4, in some proxy configurations, mishandles certain short payloads, leading to disclosure of uninitialized stack memory values to a client...

5.3CVSS5.5AI score0.00264EPSS
Exploits0References2
Debian
Debian
added 2026/05/29 3:44 p.m.31 views

[SECURITY] [DSA 6309-1] exim4 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6309-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 29, 2026 https://www.debian.org/security/faq -...

5.3CVSS5.8AI score0.00264EPSS
Exploits0
OSV
OSV
added 2026/05/29 2:0 p.m.13 views

UBUNTU-CVE-2026-48840

Exim 4.88 before 4.99.4, in some proxy configurations, mishandles certain short payloads, leading to disclosure of uninitialized stack memory values to a client...

5.3CVSS5.8AI score0.00264EPSS
Exploits0References5
GithubExploit
GithubExploit
added 2026/05/29 12:47 p.m.112 views

Penetration-Testing-Exploitation-of-Vulnerable-Linux-Systems

Penetration-Testing-Exploitation-of-Vulnerable-Linux-Systems K...

6.2AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/29 12:0 a.m.15 views

PT-2026-44997

Name of the Vulnerable Software and Affected Versions Exim versions 4.88 through 4.99.3 Description In certain proxy configurations, the PROXY-protocol parser mishandles short payloads, resulting in a pre-authentication information disclosure. This issue allows the leakage of uninitialized stack...

5.3CVSS5.8AI score0.00264EPSS
Exploits0References31
OSV
OSV
added 2026/05/23 10:24 a.m.13 views

CLSA-2026-1779531839 Update of exim

Rebuilt with rebrand to TuxCare ELS...

5.8AI score
Exploits0References1
OSV
OSV
added 2026/05/23 10:20 a.m.11 views

CLSA-2026-1779531651 Update of exim

Rebuilt with rebrand to TuxCare ELS...

5.8AI score
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in exim4

Exim 4 before 4.94.2 has an improper neutralization of line delimiters. An authenticated remote SMTP client can insert newline characters into a spool file which indirectly leads to remote code execution as root via the AUTH= parameter in the MAIL FROM command...

9CVSS7.6AI score0.04139EPSS
Exploits1References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in exim4

Exim version 4.93 has a buffer overflow issue in the SPA authenticator, which could lead to bypassing SPA/NTLM authentication in the files auths/spa.c and auths/auth-spa.c...

7.5CVSS7.6AI score0.04553EPSS
Exploits2References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in exim4

Exim 4 before 4.94.2 allows Out-of-bounds Read because pdkimfinishbodyhash does not validate the relationship between sig-bodyhash.len and b-bh.len; thus, a crafted DKIM-Signature header might lead to the leakage of sensitive information from process memory...

7.5CVSS7.6AI score0.02764EPSS
Exploits1References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in exim4

Exim 4 before 4.94.2 allows out-of-bounds write-ups, because the main function, while having setuid root, copies the current working directory pathname into a buffer that is too small on some common platforms...

7.8CVSS7.3AI score0.00414EPSS
Exploits1References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.10 views

Astra Linux – Vulnerability in exim4

Exim 4 before 4.94.2 allowed execution with unnecessary privileges. The -oP option is available to the exim user, and it could lead to a denial of service, as files owned by root could be overwritten...

6.1CVSS7.8AI score0.0094EPSS
Exploits1References1
Rows per page
Query Builder