Lucene search
K

8 matches found

CISA KEV Catalog
CISA KEV Catalog
added 2022/01/10 12:0 a.m.23 views

Exim Mail Transfer Agent (MTA) Improper Input Validation

Improper validation of recipient address in delivermessage function in /src/deliver.c may lead to remote command execution...

10CVSS4.1AI score0.99961EPSS
In wildExploits27
VulnCheck KEV
VulnCheck KEV
added 2019/12/27 12:0 a.m.3 views

VulnCheck KEV: CVE-2019-10149

Improper validation of recipient address in delivermessage function in /src/deliver.c may lead to remote command execution...

10CVSS7.5AI score0.99961EPSS
Exploits27References1
BDU FSTEC
BDU FSTEC
added 2019/08/08 12:0 a.m.4 views

The vulnerability of the deliver_message() function (/src/deliver.c) in the Exim mail server allows a hacker to execute arbitrary code.

The vulnerability of the delivermessage function /src/deliver.c in the Exim mail server is related to insufficient validation of input data. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

10CVSS8.2AI score0.99961EPSS
Exploits27References9Affected Software2
Tenable Nessus
Tenable Nessus
added 2019/06/07 12:0 a.m.58 views

FreeBSD : Exim -- RCE in deliver_message() function (45bea6b5-8855-11e9-8d41-97657151f8c2)

Exim team and Qualys report : We received a report of a possible remote exploit. Currently there is no evidence of an active use of this exploit. A patch exists already, is being tested, and backported to all versions we released since and including 4.87. The severity depends on your configuratio...

10CVSS8.6AI score0.99961EPSS
Exploits27References3
OpenVAS
OpenVAS
added 2019/06/07 12:0 a.m.470 views

Exim 4.87 - 4.91 RCE Vulnerability

Exim is prone to an unauthenticated remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

10CVSS10AI score0.99961EPSS
Exploits27References4
OSV
OSV
added 2019/06/05 2:29 p.m.6 views

DEBIAN-CVE-2019-10149

A flaw was found in Exim versions 4.87 to 4.91 inclusive. Improper validation of recipient address in delivermessage function in /src/deliver.c may lead to remote command execution...

9.8CVSS7AI score0.99961EPSS
Exploits27References1
OSV
OSV
added 2019/06/04 12:0 a.m.4 views

UBUNTU-CVE-2019-10149

A flaw was found in Exim versions 4.87 to 4.91 inclusive. Improper validation of recipient address in delivermessage function in /src/deliver.c may lead to remote command execution...

9.8CVSS7.2AI score0.99961EPSS
Exploits27References5
FreeBSD
FreeBSD
added 2019/05/27 12:0 a.m.75 views

Exim -- RCE in deliver_message() function

Exim team and Qualys report: We received a report of a possible remote exploit. Currently there is no evidence of an active use of this exploit. A patch exists already, is being tested, and backported to all versions we released since and including 4.87. The severity depends on your configuration...

10CVSS2.3AI score0.99961EPSS
Exploits27References1
Rows per page
Query Builder