CVE-2026-48840EPSS p19.0%

CVE-2026-48840CVE-2026-48840

exim / exim

Description

Exim 4.88 before 4.99.4, in some proxy configurations, mishandles certain short payloads, leading to disclosure of uninitialized stack memory values to a client.

Scoring

CVSS 5.3 ()
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS0.27% probability of exploitation · percentile 19.0% · 2026-06-19T12:03:05Z
Last modified2026-06-05

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-67896
CVE
CVE-2026-40687
CVE
CVE-2026-40685
CVE
CVE-2026-45185
CVE
Exim Heap-Based Buffer Overflow Vulnerability
CVE
Exim Out-of-bounds Write Vulnerability
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.