EUVD-2026-33446
GHSA-wgrp-2w9f-fmvg
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Lifecycle Timeline
1DescriptionNVD
Exim 4.88 before 4.99.4, in some proxy configurations, mishandles certain short payloads, leading to disclosure of uninitialized stack memory values to a client.
AnalysisAI
Uninitialized stack memory disclosure in Exim 4.88 through 4.99.3 allows remote unauthenticated attackers to read arbitrary stack memory contents by sending specially crafted short payloads to proxy-enabled SMTP listeners. The vulnerability is constrained to proxy configurations but requires no authentication and no user interaction (AV:N/AC:L/PR:N/UI:N), making it trivially reachable against exposed instances. …
Sign in for full analysis, threat intelligence, and remediation guidance.
More from same product – last 7 days
Kernel memory corruption in the Linux iWARP Connection Manager (RDMA/iwcm) subsystem can crash systems running RDMA work
Remote code execution in Google Chrome desktop versions prior to 148.0.7778.216 allows a remote attacker to execute arbi
Heap corruption in Google Chrome's PDFium component (versions prior to 148.0.7778.216) allows a remote attacker to poten
Cross-origin data leakage in Google Chrome versions prior to 148.0.7778.216 stems from an integer overflow in the ANGLE
Type confusion in the V8 JavaScript engine of Google Chrome before 148.0.7778.216 enables arbitrary code execution withi
Vendor StatusVendor
Debian
| Release | Status | Fixed Version | Urgency |
|---|---|---|---|
| bullseye | vulnerable | 4.94.2-7+deb11u3 | - |
| bullseye (security) | vulnerable | 4.94.2-7+deb11u5 | - |
| bookworm | fixed | 4.96-15+deb12u10 | - |
| bookworm (security) | fixed | 4.96-15+deb12u10 | - |
| trixie | fixed | 4.98.2-1+deb13u3 | - |
| trixie (security) | fixed | 4.98.2-1+deb13u3 | - |
| forky | vulnerable | 4.99.3-1 | - |
| sid | fixed | 4.99.3-2 | - |
| (unstable) | fixed | 4.99.3-2 | - |
Share
External POC / Exploit Code
Leaving vuln.today