CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

RedhatCVE•added 2025/05/22 3:26 p.m.•4 views

CVE-2020-28014

Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. The -oP option is available to the exim user, and allows a denial of service because root-owned files can be overwritten...

6.1CVSS6.3AI score0.00057EPSS

Exploits1

CNNVD•added 2025/03/28 12:0 a.m.•3 views

Exim 安全漏洞

Exim is an open source messaging agent MTA running on Unix systems from Exim Open Source, which is responsible for routing, forwarding and delivering mail. A security vulnerability exists in Exim versions 4.96 through 4.98.1, which stems from reuse after release and could lead to elevation of...

8.1CVSS8.2AI score0.001EPSS

Exploits0References2

CNNVD•added 2023/12/24 12:0 a.m.•1 views

Exim Security Vulnerabilities

Exim is an open source messaging agent MTA running on Unix systems that routes, forwards and delivers mail. A security vulnerability exists in Exim 4.97 and earlier versions, which stems from a vulnerability that allows an attacker to bypass the SPF protection mechanism for SMTP smuggling...

5.3CVSS6.7AI score0.01642EPSS

Exploits1References19

SUSE CVE•added 2023/02/15 3:38 a.m.•1 views

SUSE CVE-2021-38371

The STARTTLS feature in Exim through 4.94.2 allows response injection buffering during MTA SMTP sending...

7.5CVSS8.1AI score0.02209EPSS

Exploits0References3

CNNVD•added 2022/08/06 12:0 a.m.•1 views

Exim 安全漏洞

Exim is an open source messaging agent MTA running on Unix systems that routes, forwards and delivers mail. A security vulnerability exists in Exim versions prior to 4.96, which stems from an invalid free in pamconverse in auths/callpam.c. The vulnerability is caused by the use of an invalid free...

7.5CVSS7.4AI score0.19345EPSS

Exploits2References12

GithubExploit•added 2019/10/27 1:3 a.m.•368 views

Exploit for OS Command Injection in Exim

CVE-2019-10149 CVE-2019-10149 : A flaw was found in Exim versi...

10CVSS3.9AI score0.93918EPSS

Exploits27

OpenVAS•added 2018/03/08 12:0 a.m.•166 views

Exim < 4.90.1 RCE Vulnerability - Version Check

Exim is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:exim:exim";...

9.8CVSS9.8AI score0.86592EPSS

Exploits19References6

OSV•added 2012/10/31 4:55 p.m.•1 views

DEBIAN-CVE-2012-5671

Heap-based buffer overflow in the dkimeximquerydnstxt function in dkim.c in Exim 4.70 through 4.80, when DKIM support is enabled and aclsmtpconnect and aclsmtprcpt are not set to "warn control = dkimdisableverify," allows remote attackers to execute arbitrary code via an email from a malicious DN...

6.8CVSS8.4AI score0.31639EPSS

Exploits0References1

Tenable Nessus•added 2004/05/06 12:0 a.m.•28 views

Exim < 3.36 / 4.33 Multiple Remote Overflows

The remote version of Exim has multiple remote stack-based buffer overflow vulnerabilities when header syntax checking is enabled. It should be noted that this is not the default configuration. A remote attacker could exploit this to execute arbitrary code. C Tenable Network Security, Inc...

7.5CVSS6.1AI score0.42079EPSS

Exploits2References3

securityvulns•added 2003/09/03 12:0 a.m.•27 views

exim remote heap overflow, probably not exploitable

Exim www.exim.org is a message transfer agent MTA developed at the University of Cambridge for use on Unix systems connected to the Internet. There's a heap overflow in all versions of exim3 and exim4 prior to version 4.21. It can be exercised by anyone who can make an SMTP connection to the exim...

3.7AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by