Vulnerability cyber

Exim

Mar 27, 2025 1 min read
Exim

A critical security vulnerability identified in Exim MTA, tracked as CVE-2025-30232, affects versions 4.96 to 4.98.1 and allows for potential privilege escalation due to a use-after-free (UAF) issue. Command-line access is required for exploitation, posing a high risk for organisations using Exim, particularly those running Debian-based systems. The vulnerability's presence in popular systems like Ubuntu 24.04 LTS and Debian Bookworm, coupled with Exim's extensive use globally, puts a vast number of servers at risk. The issue has been addressed in Exim 4.98.2, but until systems are patched, they remain vulnerable to data breaches and system compromise.

Source: https://cybersecuritynews.com/exim-use-after-free-vulnerability/

TPRM report: https://scoringcyber.rankiteo.com/company/exim-finance

"id": "exi812032725",
"linkid": "exim-finance",
"type": "Vulnerability",
"date": "3/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"
{'affected_entities': [{'industry': 'Various',
                        'location': 'Global',
                        'name': 'Exim MTA Users',
                        'type': 'Organisation'}],
 'attack_vector': 'Privilege Escalation',
 'description': 'A critical security vulnerability identified in Exim MTA, '
                'tracked as CVE-2025-30232, affects versions 4.96 to 4.98.1 '
                'and allows for potential privilege escalation due to a '
                'use-after-free (UAF) issue. Command-line access is required '
                'for exploitation, posing a high risk for organisations using '
                'Exim, particularly those running Debian-based systems. The '
                "vulnerability's presence in popular systems like Ubuntu 24.04 "
                "LTS and Debian Bookworm, coupled with Exim's extensive use "
                'globally, puts a vast number of servers at risk. The issue '
                'has been addressed in Exim 4.98.2, but until systems are '
                'patched, they remain vulnerable to data breaches and system '
                'compromise.',
 'impact': {'systems_affected': ['Exim MTA versions 4.96 to 4.98.1',
                                 'Debian-based systems',
                                 'Ubuntu 24.04 LTS',
                                 'Debian Bookworm']},
 'references': [{'source': 'Exim MTA Security Advisory'}],
 'response': {'remediation_measures': ['Patch to Exim 4.98.2']},
 'title': 'Critical Security Vulnerability in Exim MTA',
 'type': 'Vulnerability Exploitation',
 'vulnerability_exploited': 'CVE-2025-30232'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.