CVE-2026-45185: Use After Free

Q: What is the severity of CVE-2026-45185?

CVE-2026-45185 has been classified with a high severity rating due to its potential for remote exploitation.

Q: How do I fix CVE-2026-45185?

To mitigate CVE-2026-45185, upgrade Exim to version 4.99.3 or later where the vulnerability is addressed.

Q: What are the potential consequences of CVE-2026-45185?

Exploitation of CVE-2026-45185 may lead to denial of service or remote code execution on affected Exim email servers.

Q: Which versions of Exim are affected by CVE-2026-45185?

Exim versions prior to 4.99.3 are affected by CVE-2026-45185.

Q: Can CVE-2026-45185 be exploited remotely?

Yes, CVE-2026-45185 can be exploited remotely if certain GnuTLS configurations are in use.

Published May 12, 2026

Updated

Exim before 4.99.3, in certain GnuTLS configurations, has a remotely reachable use-after-free in the BDAT body parsing path. It is triggered when a client sends a TLS close_notify mid-body during a CHUNKING transfer, followed by a final cleartext byte on the same TCP connection. This can lead to heap corruption. An unauthenticated network attacker exploiting this vulnerability could execute arbitrary code.

Affected Software

1 affected component

Exim Exim<4.99.3

Event History

May 12, 2026

CVE Published

via MITRE·12:00 AM

Data Sourced

via MITRE·12:00 AM

DescriptionSeverityWeakness

Data Sourced

via NVD·08:16 PM

DescriptionSeverityWeakness

May 13, 2026

News Published

via BleepingComputer·08:23 PM

News Published

via BleepingComputer·08:25 PM

Frequently Asked Questions

What is the severity of CVE-2026-45185?

CVE-2026-45185 has been classified with a high severity rating due to its potential for remote exploitation.

How do I fix CVE-2026-45185?

To mitigate CVE-2026-45185, upgrade Exim to version 4.99.3 or later where the vulnerability is addressed.

What are the potential consequences of CVE-2026-45185?

Exploitation of CVE-2026-45185 may lead to denial of service or remote code execution on affected Exim email servers.

Which versions of Exim are affected by CVE-2026-45185?

Exim versions prior to 4.99.3 are affected by CVE-2026-45185.

Can CVE-2026-45185 be exploited remotely?

Yes, CVE-2026-45185 can be exploited remotely if certain GnuTLS configurations are in use.

CVSS Score

9.8Critical

Critical Severity

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Security Metrics

Risk Score92

Severitycritical(9.8)

CWE

416

Timeline

PublishedMay 12, 2026

Updated

References

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.