SecAlerts
CVE ListPricingSign Up
exim logo

exim

Security Risk Profile

65
/100
high

Security Risk Score

Comprehensive risk assessment based on 172 vulnerabilities, EPSS scores, exploitation status, and remediation availability.

📅 Data spans from January 6, 2005 to present

172
Total CVEs
58
Critical+High
5
Exploited
32
Unpatched

Threat Assessment

Avg CVSS
7.5
Base severity
Avg EPSS
17%
Exploit probability
Unpatched
32
Critical/High
Risk Level
65/100
high
⚠️ 5 Active Exploits🆕 1Fresh (<7d)📈 13 in Last 30 Days

Severity Distribution

Critical
26
High
32
Medium
19
Low
5

Exploit Likelihood

>50% chance
0
20-50%
1
5-20%
0
<5%
1

Age Distribution

Common Weaknesses (CWE)

1
Buffer Overflow
16
2
Use After Free
6
3
Race Condition
4
4
Integer Overflow
3
5
Input Validation
3

Most Affected Products

1. Exim Exim640
2. ubuntu/exim460
3. Canonical Ubuntu Linux25
4. Debian Debian Linux22
5. debian/exim418

Recent Vulnerabilities

See more →
https://reddit.com/r/cybersecurity/comments/1tbrjsh/new_exim_bdat_bug_shows_why_just_patch_the_mail/
unknown

New Exim BDAT bug shows why “just patch the mail server” is still not simple

5/13/2026🔧 No Patch
https://seclists.org/oss-sec/2026/q2/512
unknown

[EXIM-Security-2026-05-01.1] Security lease 4.99.3

5/12/2026🔧 No Patch
https://reddit.com/r/netsec/comments/1tb8vj3/deadletter_cve202645185_how_xbow_found_an/
unknown

Dead.Letter (CVE-2026-45185) How XBOW found an unauthenticated RCE on Exim

5/12/2026🔧 No Patch
https://seclists.org/oss-sec/2026/q2/492
unknown

[EXIM-Security-2026-05-01.1] Security lease 4.99.3

5/12/2026🔧 No Patch
https://seclists.org/oss-sec/2026/q2/491
unknown

[EXIM-Security-2026-05-01.1] Security lease 4.99.3

5/12/2026🔧 No Patch
CVE-2026-45185
CVSS 9.8critical
5/12/2026🔧 No Patch
https://seclists.org/oss-sec/2026/q2/317
unknown

Exim 4.99.2 fixes 4 CVEs

5/1/2026🔧 No Patch
https://seclists.org/oss-sec/2026/q2/306
unknown

Exim 4.99.2 fixes 4 CVEs

4/30/2026🔧 No Patch
CVE-2026-40685
CVSS 9.8critical
4/30/2026
CVE-2026-40686
CVSS 5.3medium
4/30/2026

Monitor exim in Real-Time

Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.

Start Free TrialBook a Demo
Powered bySecAlerts

Monitor Your Software Stack in Real-Time

Get instant alerts when vulnerabilities are discovered in your software stack. Stay ahead of security threats with SecAlerts.

Start Free TrialBook a Demo
AboutNewsDocumentationTermsContact

© 2026 SecAlerts Pty Ltd. All rights reserved.

exim Security Vulnerabilities & Risk Score | 172 CVEs | SecAlerts - SecAlerts