CVE-2025-26794

HIGH

Exim < 4.98.1 - SQL Injection

Title source: rule

Description

Exim 4.98 before 4.98.1, when SQLite hints and ETRN serialization are used, allows remote SQL injection. (Resolving SQL injection requires an update to 4.99.1 in certain non-default rate-limit configurations.)

Exploits (3)

nomisec WORKING POC 14 stars

by OscarBataille · poc

https://github.com/OscarBataille/CVE-2025-26794

View Code ZIP pw:eip

github WORKING POC 2 stars

by XploitGh0st · pythonpoc

https://github.com/XploitGh0st/CVE-2025-26794-exploit

View Code ZIP pw:eip

nomisec STUB

by ishwardeepp · poc

https://github.com/ishwardeepp/CVE-2025-26794-Exim-Mail-SQLi

View Code ZIP pw:eip

References (11)

[Issue Tracking, Third Party Advisory] https://bugzilla.suse.com/show_bug.cgi?id=1237424

[Patch] https://code.exim.org/exim/exim/commit/bfe32b5c6ea033736a26da8421513206db9fe305

[Product] https://exim.org

[Various Sources] https://exim.org/static/doc/security/EXIM-Security-2025-12-09.1/report.txt

[Vendor Advisory] https://github.com/Exim/exim/wiki/EximSecurity

[Release Notes] https://github.com/NixOS/nixpkgs/pull/383926

[Patch] https://github.com/openbsd/ports/commit/584d2c49addce9ca0ae67882cc16969104d7f82d

[Vendor Advisory] https://www.exim.org/static/doc/security/CVE-2025-26794.txt

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2025/02/19/1

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2025/02/21/4

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2025/02/21/5

Scores

CVSS v3 7.5

EPSS 0.7473

EPSS Percentile 98.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-89

Status published

Products (1)

exim/exim 4.98 - 4.98.1

Published Feb 21, 2025

Tracked Since Feb 18, 2026