Lucene search
K

12 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:48 p.m.9 views

CVE-2020-28026

Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters, relevant in non-default configurations that enable Delivery Status Notification DSN. Certain uses of ORCPT= can place a newline into a spool header file, and indirectly allow unauthenticated remote attackers to execute arbitrary...

9.8CVSS9.8AI score0.09251EPSS
Exploits1
Redos
Redos
added 2024/03/13 12:0 a.m.21 views

ROS-2-1337

2.1337 Multiple Exim Server Vulnerabilities 1. Vulnerability description: CVE-2020-28007 A vulnerability in the Exim message forwarding agent, is related to a symbolic link in the Exim log directory. Exploitation of the vulnerability could allow an attacker to create a special symbolic link to a...

9.8CVSS10AI score0.61664EPSS
Exploits6
Redos
Redos
added 2021/12/24 12:0 a.m.26 views

ROS-2-905

2.905 Multiple Exim Server Vulnerabilities 1. Vulnerability description: CVE-2020-28007 A vulnerability in the Exim message forwarding agent, is related to a symbolic link in the Exim log directory. Exploitation of the vulnerability could allow an attacker to create a special symbolic link to a...

9.8CVSS9.1AI score0.61664EPSS
Exploits6
Redos
Redos
added 2021/09/08 12:0 a.m.21 views

ROS-2-1006

2.1006 Multiple Exim Server Vulnerabilities 1. Vulnerability description: CVE-2020-28007 A vulnerability in the Exim message forwarding agent, is related to a symbolic link in the Exim log directory. Exploitation of the vulnerability could allow an attacker to create a special symbolic link to a...

9.8CVSS9.1AI score0.61664EPSS
Exploits6
Redos
Redos
added 2021/09/08 12:0 a.m.30 views

ROS-2-1323

2.1323 Multiple Exim Server Vulnerabilities 1. Vulnerability description: CVE-2020-28007 A vulnerability in the Exim message forwarding agent, is related to a symbolic link in the Exim log directory. Exploitation of the vulnerability could allow an attacker to create a special symbolic link to a...

9.8CVSS9.2AI score0.61664EPSS
Exploits6
Redos
Redos
added 2021/09/08 12:0 a.m.18 views

ROS-2-1498

2.1498 Multiple Exim Server Vulnerabilities 1. Vulnerability description: CVE-2020-28007 A vulnerability in the Exim message forwarding agent, is related to a symbolic link in the Exim log directory. Exploitation of the vulnerability could allow an attacker to create a special symbolic link to a...

9.8CVSS9.1AI score0.61664EPSS
Exploits9
Redos
Redos
added 2021/09/08 12:0 a.m.29 views

ROS-2-477

2.477 Multiple Exim Server Vulnerabilities 1. Vulnerability description: CVE-2020-28007 A vulnerability in the Exim message forwarding agent, is related to a symbolic link in the Exim log directory. Exploitation of the vulnerability could allow an attacker to create a special symbolic link to a...

9.8CVSS9.1AI score0.61664EPSS
Exploits9
Ubuntu
Ubuntu
added 2021/05/06 11:23 a.m.154 views

USN-4934-2: Exim vulnerabilities

USN-4934-1 fixed several vulnerabilities in Exim. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. CVE-2020-28026 only affected Ubuntu 16.04 ESM. Original advisory details: It was discovered that Exim contained multiple security issues. An attacker could us...

9.8CVSS7.9AI score0.36649EPSS
Exploits6
Debian CVE
Debian CVE
added 2021/05/06 4:41 a.m.52 views

CVE-2020-28026

Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters, relevant in non-default configurations that enable Delivery Status Notification DSN. Certain uses of ORCPT= can place a newline into a spool header file, and indirectly allow unauthenticated remote attackers to execute arbitrary...

9.8CVSS8.6AI score0.09251EPSS
Exploits1
CVE
CVE
added 2021/05/06 4:41 a.m.3611 views

CVE-2020-28026

Exim 4 before 4.94.2 contains a vulnerability (CVE-2020-28026) described as Improper Neutralization of Line Delimiters in DSN contexts. In non-default configurations using DSN, ORCPT= can insert a newline into a spool header file, enabling unauthenticated remote attackers to execute arbitrary com...

9.8CVSS8AI score0.09251EPSS
Exploits1References1Affected Software1
OpenVAS
OpenVAS
added 2021/05/05 12:0 a.m.39 views

Exim < 4.94.2 Multiple Vulnerabilities (21Nails)

Exim is prone to multiple vulnerabilities dubbed SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:exim:exim"; if description...

9.8CVSS7.6AI score0.61664EPSS
Exploits6References2
OpenVAS
OpenVAS
added 2021/05/05 12:0 a.m.30 views

Ubuntu: Security Advisory (USN-4934-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.3AI score0.61664EPSS
Exploits6References2
Rows per page
Query Builder