Description
Exim 4.88 before 4.99.4, in some proxy configurations, mishandles certain short payloads, leading to disclosure of uninitialized stack memory values to a client.
Published: 2026-05-30
Score: 5.3 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Exim 4.88 through 4.99.4 mishandles certain short payloads when operating behind proxy configurations, causing uninitialized stack memory values to be sent back to the remote client. As a result, an attacker can obtain arbitrary, uninitialized data from the Exim process, leading to a partial information disclosure that could reveal sensitive credentials or configuration details. The weakness is categorized as CWE-839.

Affected Systems

Vendors affected include Exim. Product Exim version 4.88 up to but not including 4.99.4 are vulnerable. Any deployments of Exim in proxy mode that accept short payloads from external sources fall within the scope.

Risk and Exploitability

With a CVSS score of 5.3 the vulnerability presents a moderate risk. The exposure of uninitialized stack data results in a moderate confidentiality impact, and no denial of service or execution capability is noted. Because the attack requires traffic to pass through a misconfigured proxy, an external attacker can trigger the exploit remotely. The EPSS score is not available and the vulnerability is not listed in the CISA KEV catalog, suggesting that exploitation activity has not yet been observed at scale.

Generated by OpenCVE AI on May 30, 2026 at 03:20 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Exim to version 4.99.4 or later when available.
  • Reconfigure or disable proxy settings that allow unfiltered short payloads from external clients.
  • Subscribe to Exim security notices and apply future patches promptly.

Generated by OpenCVE AI on May 30, 2026 at 03:20 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DSA Debian DSA DSA-6309-1 exim4 security update
History

Sat, 30 May 2026 04:30:00 +0000

Type Values Removed Values Added
References

Sat, 30 May 2026 03:45:00 +0000

Type Values Removed Values Added
Title Exim Proxy Misconfiguration Causes Uninitialized Memory Disclosure

Sat, 30 May 2026 02:15:00 +0000

Type Values Removed Values Added
Description Exim 4.88 before 4.99.4, in some proxy configurations, mishandles certain short payloads, leading to disclosure of uninitialized stack memory values to a client.
First Time appeared Exim
Exim exim
Weaknesses CWE-839
CPEs cpe:2.3:a:exim:exim:*:*:*:*:*:*:*:*
Vendors & Products Exim
Exim exim
References
Metrics cvssV3_1

{'score': 5.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N'}

Subscriptions

Exim Exim
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2026-05-30T03:08:42.289Z

Reserved: 2026-05-25T17:51:46.146Z

Link: CVE-2026-48840

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-05-30T02:16:19.790

Modified: 2026-05-30T04:17:22.890

Link: CVE-2026-48840

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-30T04:00:09Z

Weaknesses