CVE-2025-67896CRITICAL 9.8EPSS p32.0%

CVE-2025-67896CVE-2025-67896

Description

Exim before 4.99.1, with certain non-default rate-limit configurations, allows a remote heap-based buffer overflow because database records are cast directly to internal structures without validation.

Scoring

CVSS 3.19.8 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS0.40% probability of exploitation · percentile 32.0% · 2026-06-19T12:03:05Z
Published2025-12-14
Last modified2025-12-22

Underlying weaknesses· 1

CWE-122

References

  1. https://exim.org/static/doc/security/
  2. https://exim.org/static/doc/security/EXIM-Security-2025-12-09.1/report.txt
  3. https://www.openwall.com/lists/oss-security/2025/12/11/2
  4. http://www.openwall.com/lists/oss-security/2025/12/14/1
  5. http://www.openwall.com/lists/oss-security/2025/12/18/3

1

TypeTargetConfidenceTier
WeaknessHeap-based Buffer Overflowcwe-1220%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-26794
CVE
CVE-2026-40685
CVE
CVE-2026-48840
CVE
Exim Out-of-bounds Write Vulnerability
CVE
Exim Heap-Based Buffer Overflow Vulnerability
CVE
Exim Buffer Overflow Vulnerability
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.