Main Vulnerability Database Vulnerabilities #VU130457

Out-of-bounds write in Exim - CVE-2026-40687

Published: May 7, 2026

Vulnerability identifier: #VU130457

CSH Severity: Medium

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2026-40687

CWE-ID: CWE-787

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
Exim

Software vendor:
Exim

Description

The vulnerability allows a remote attacker to cause a denial of service.

The vulnerability exists due to out-of-bounds read/write in the SPA authentication driver when handling a hostile or compromised external SPA/NTLM connection. A remote attacker can provide crafted SPA/NTLM responses to cause a denial of service.

The issue is exposed in configurations that use the SPA authentication driver and may also leak heap data to the instance.

Remediation

Install security update from vendor's website.

External links

https://www.openwall.com/lists/oss-security/2026/04/30/21
https://lists.exim.org/lurker/message/20260429.121733.f58d9686.en.html

Out-of-bounds write in Exim - CVE-2026-40687

Description

Remediation

External links

Please verify you're human