Question
What is Exim vulnerability CVE-2025-30232?
Answer
This vulnerability relies on Exim running in debug mode and with pretriggers being enabled. This is not how Exim is run under cPanel by default, so it is very unlikely for anyone to be affected. Still, we have updated our Exim package to include the fix.
Note: By default, cPanel does not run Exim in this configuration.
Do not use debug mode with pretriggers when running Exim on public (-dp flag, or pretrigger= debug options).
If you want to check if you are running a patched version of Exim, please run the following command to confirm the current version of Exim on the server:
rpm -q cpanel-exim
For cPanel versions 118+, the following is the updated version:
cpanel-exim-4.98.1-2.cp118~el9.x86_64
For cPanel version 110:
cpanel-exim-4.98.1-2.cp108~el7
