Out-of-Bounds Write Vulnerability in Exim Mail Transfer Agent
CVE-2026-40687

4.8MEDIUM

Key Information:

Vendor: Exim
Status: Exim
Vendor: CVE Published:; 30 April 2026

What is CVE-2026-40687?

A vulnerability in Exim Mail Transfer Agent has been identified, where the SPA authentication driver can be exploited with malicious SPA resources. This leads to out-of-bounds write issues, which can cause the connection instance to crash. Additionally, the vulnerability poses a risk of data leakage from uninitialized heap memory, making it crucial for users to assess their exposure and apply relevant security measures immediately.

Affected Version(s)

Exim 0 < 4.99.2

References

https://www.openwall.com/lists/oss-security/2026/04/30/21

https://exim.org/static/doc/security/cve-2026-04.1/CVE202...

https://code.exim.org/exim/exim/commit/68b963b9f75ca27b38...

CVSS V3.1

Score:

4.8

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 30, 2026
Vulnerability Reserved
Apr 14, 2026

CVE-2026-40687 Data

JSON