PT-2026-36196 · Exim+2 · Exim+2

Bernard Quatermass

Published

2026-04-29

Updated

2026-06-03

CVE-2026-40685

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Exim versions prior to 4.99.2

Description An out-of-bounds heap write can occur when JSON lookup is enabled. This happens when a JSON operator encounters malformed JSON in an untrusted header due to an incorrect implementation of backslash skipping.

Recommendations Update to version 4.99.2 or later. As a temporary workaround, disable the JSON lookup feature to minimize the risk of exploitation.

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-684CWE-787

Related Identifiers

CVE-2026-40685

USN-8228-1

USN-8382-1

Affected Products

Exim

Linuxmint

Ubuntu

PT-2026-36196 · Exim+2 · Exim+2

CVE-2026-40685

Weakness Enumeration

Related Identifiers

Affected Products

References · 28