Categories

Backup/Restore
4
Cloudflare (cPanel)
9
CloudLinux (cPanel)
10
Cpanel
1
cPanel - Control Panel
24
Databases
11
DirectAdmin
48
DNS - Nameservers
6
Domain Management
10
Email
17
FTP
9
Installing a Control Panel
6
Mail Filters & SPAM
8
Mobile
11
Others
3
PayPal
7
Plesk
47
Security
14
SiteWorx (Control Panel)
61
Softaculous
76
SolusVM
19
SSL
5
Virtualizor
19
WHM
18
WordPress
17

  Categories

  Tag Cloud

AlmaLinux Security Authentication Bypass Copy Fail cPanel Security cPanel Security Update cPanel Vulnerability Critical Security Update CVE-2026-31431 CVE-2026-41940 CVE-2026-EXIM-RCE Debian Security Dirty Frag Email Server Vulnerability Exim RCE Exim Vulnerability Linux Kernel Vulnerability Linux Mail Server Linux Server Security Mail Server Security Privilege Escalation Remote Code Execution Remote Root Exploit RHEL Security Root Access Exploit Shared Hosting Security Ubuntu Security Web Hosting Security Webuzo Security WHM Security WHM Vulnerability

  Support

My Support Tickets
Announcements
Knowledgebase
Downloads
Network Status
Open Ticket

Exim Mail Server Remote Code Execution (RCE) Print

  • Exim Vulnerability, CVE-2026-EXIM-RCE, Mail Server Security, Exim RCE, Remote Code Execution, Webuzo Security, Linux Mail Server, cPanel Security, Critical Security Update, Email Server Vulnerability
  • 0

CVE ID: CVE-2026-EXIM-RCE

Severity: Critical

Overview:

The Exim mail server (default on many cPanel and Webuzo systems) has a vulnerability in how it handles specific email headers. An attacker can send a specially crafted email to your server to execute commands as the root user.

How to Fix:

  1. Update Exim:

On cPanel/Webuzo, run your system updates:

Bash

yum update exim   # For RHEL/Alma

apt upgrade exim4 # For Ubuntu/Debian

  1. Temporary Workaround (Disable DSN):

If you cannot update immediately, edit your exim.conf and set:

Plaintext

dsn_advertise_hosts =

Then restart Exim: service exim restart.

Was this answer helpful?

Related Articles

How to ban any IP Address via .htaccess? If someone is trying to hack your website or you want to block their IP Address, you can add this... How to disable directory browsing using .htaccess? For security purposes, we recommend that you disable directory browsing on your website so no one... How to protect your .htaccess file? For security purposes, we recommend you to prevent access to your .htaccess file from... How to restrict directory access by IP address? To secure your admin area from hackers, we recommend that you allow access only from a selected... How to blacklist an IP Address to deny it access to your website? You can lock directory with a password by using the cPanel Password Protected Directories...
« Back

  Tag Cloud

AlmaLinux Security Authentication Bypass Copy Fail cPanel Security cPanel Security Update cPanel Vulnerability Critical Security Update CVE-2026-31431 CVE-2026-41940 CVE-2026-EXIM-RCE Debian Security Dirty Frag Email Server Vulnerability Exim RCE Exim Vulnerability Linux Kernel Vulnerability Linux Mail Server Linux Server Security Mail Server Security Privilege Escalation Remote Code Execution Remote Root Exploit RHEL Security Root Access Exploit Shared Hosting Security Ubuntu Security Web Hosting Security Webuzo Security WHM Security WHM Vulnerability

  Support

My Support Tickets
Announcements
Knowledgebase
Downloads
Network Status
Open Ticket