Lucene search
Alpine Linux Development TeamALPINE:CVE-2020-28007HistoryMay 06, 2021 - 1:15 p.m.
CVE-2020-28007
2021-05-0613:15:00
Alpine Linux Development Team
security.alpinelinux.org
23
0.0004 Low
EPSS
Percentile
12.1%
Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the log directory (owned by a non-root user), a symlink or hard link attack allows overwriting critical root-owned files anywhere on the filesystem.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | edge-community | noarch | exim | < 4.94.2-r0 | UNKNOWN |
| Alpine | 3.13-community | noarch | exim | < 4.94.2-r0 | UNKNOWN |
| Alpine | 3.14-community | noarch | exim | < 4.94.2-r0 | UNKNOWN |
| Alpine | 3.15-community | noarch | exim | < 4.94.2-r0 | UNKNOWN |
| Alpine | 3.16-community | noarch | exim | < 4.94.2-r0 | UNKNOWN |
| Alpine | 3.17-community | noarch | exim | < 4.94.2-r0 | UNKNOWN |
| Alpine | 3.18-community | noarch | exim | < 4.94.2-r0 | UNKNOWN |
| Alpine | 3.19-community | noarch | exim | < 4.94.2-r0 | UNKNOWN |
Related
osv
osv
CVE-2020-28007
2021-05-06 13:15:09
CVE-2021-27216
2021-05-06 13:15:12
exim4 vulnerabilities
2021-05-06 11:23:36
veracode
veracode
Privilege Escalation
2021-05-04 22:32:51
cve
cve
CVE-2020-28007
2021-05-06 13:15:00
prion
prion
Hardcoded credentials
2021-05-06 13:15:00
debiancve
debiancve
CVE-2020-28007
2021-05-06 13:15:00
ubuntucve
ubuntucve
CVE-2020-28007
2021-05-04 00:00:00
cvelist
cvelist
CVE-2020-28007
2021-05-06 02:58:36
nessus
nessus
Amazon Linux AMI : exim (ALAS-2022-1622)
2022-08-05 00:00:00
Ubuntu 16.04 ESM : Exim vulnerabilities (USN-4934-2)
2021-05-06 00:00:00
Debian DLA-2650-1 : exim4 security update
2021-05-07 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-2650-1)
2021-05-06 00:00:00
Debian: Security Advisory (DSA-4912-1)
2021-05-05 00:00:00
Ubuntu: Security Advisory (USN-4934-2)
2022-08-26 00:00:00
amazon
amazon
Critical: exim
2022-07-28 20:35:00
debian
debian
[SECURITY] [DSA 4912-1] exim4 security update
2021-05-04 13:53:56
[SECURITY] [DSA 4912-1] exim4 security update
2021-05-04 13:54:16
[SECURITY] [DLA 2650-1] exim4 security update
2021-05-05 11:30:22
ubuntu
ubuntu
Exim vulnerabilities
2021-05-06 00:00:00
Exim vulnerabilities
2021-05-04 00:00:00
gentoo
gentoo
Exim: Multiple vulnerabilities
2021-05-04 00:00:00
qualysblog
qualysblog
21Nails: Multiple Critical Vulnerabilities in Exim Mail Server
2021-05-04 14:10:41
threatpost
threatpost
Raft of Exim Security Holes Allow Linux Mail Server Takeovers
2021-05-05 18:15:39
thn
thn
ALERT — New 21Nails Exim Bugs Expose Millions of Email Servers to Hacking
2021-05-05 07:56:00
suse
suse
Security update for exim (critical)
2021-05-20 00:00:00
Security update for exim (critical)
2021-05-07 00:00:00
Security update for exim (critical)
2021-05-20 00:00:00