> TritonInfoSec News
Home / May 13, 2026 / Story
0
#9 The Hacker News general May 12, 2026 at 16:44 UTC

New Exim BDAT Vulnerability Exposes GnuTLS Builds to Potential Code Execution

By [email protected] (The Hacker News)

AI Summary

CVE-2026-45185, dubbed 'Dead.Letter,' is a use-after-free vulnerability in Exim mail transfer agent builds compiled with GnuTLS support, enabling potential memory corruption and remote code execution via the BDAT SMTP command. Exim is one of the most widely deployed MTAs on the internet, making this a high-priority patch for organizations running their own mail infrastructure.

Read full article → https://thehackernews.com/2026/05/new-exim-bdat-vu…

Relevance score: 78.0/100

# More from May 13

  1. 1
    Copy.Fail Linux Vulnerability Schneier on Security
  2. 2
    'Dirty Frag' Exploit Poised to Blow Up on Enterprise Linux Distros Dark Reading
  3. 3
    Microsoft May 2026 Patch Tuesday fixes 120 flaws, no zero-days BleepingComputer
  4. 4
    TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack SecurityWeek
  5. 5
    Instructure Reaches Ransom Agreement with ShinyHunters to Stop 3.65TB Canvas Leak The Hacker News
  6. 6
    Google Detects First AI-Generated Zero-Day Exploit SecurityWeek
  7. 7
    Fortinet warns of critical RCE flaws in FortiSandbox and FortiAuthenticator BleepingComputer
  8. 8
    Official CheckMarx Jenkins package compromised with infostealer BleepingComputer
  9. 10
    iOS 26.5 Brings Default End-to-End Encrypted RCS Messaging Between iPhone and Android The Hacker News