Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

23 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2019-9510

Malware in sbrugna...

9CVSS8.6AI score0.03064EPSS
Exploits0References7
EUVD
EUVDadded 2025/10/07 12:30 a.m.20 views

EUVD-2006-1255

Malware in sbrugna...

5CVSS6.2AI score0.00687EPSS
Exploits0References7
Tenable Nessus
Tenable Nessusadded 2025/08/30 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2019-19920

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sa-exim 4.2.1 allows attackers to execute arbitrary code if they can write a .cf file or a rule. This occurs because Greylisting.pm relies on eval rather than...

9CVSS7.2AI score0.03064EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/22 10:9 a.m.6 views

CVE-2019-19920

sa-exim 4.2.1 allows attackers to execute arbitrary code if they can write a .cf file or a rule. This occurs because Greylisting.pm relies on eval rather than direct parsing and/or use of the taint feature. This issue is similar to CVE-2018-11805...

9CVSS7.7AI score0.03064EPSS
Exploits0References1
Veracode
Veracodeadded 2020/09/21 6:21 a.m.25 views

Arbitrary Code Execution

sa-exim is vulnerable to arbitrary code execution. The vulnerability exists through the reliance of eval by Greylisting.pm, rather than direct parsing and/or use of the taint feature...

8.8CVSS5.7AI score0.03064EPSS
Exploits0References5Affected Software1
Ubuntu
Ubuntuadded 2020/09/18 9:7 p.m.67 views

USN-4520-1: Exim SpamAssassin vulnerability

It was discovered that Exim SpamAssassin does not properly handle configuration strings. An attacker could possibly use this issue to execute arbitrary code. CVE-2019-19920...

9CVSS7.9AI score0.03064EPSS
Exploits0
OpenVAS
OpenVASadded 2020/01/10 12:0 a.m.72 views

Debian: Security Advisory (DLA-2062-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS7.5AI score0.03064EPSS
Exploits0References3
Debian
Debianadded 2020/01/09 5:0 p.m.61 views

[SECURITY] [DLA 2062-1] sa-exim security update

Package : sa-exim Version : 4.2.1-14+deb8u1 CVE ID : CVE-2019-19920 Debian Bug : 946829 It was found that sa-exim, the SpamAssassin filter for Exim, allows attackers to execute arbitrary code if users are allowed to run custom rules. A similar issue was fixed in spamassassin, CVE-2018-11805, whic...

9CVSS7.9AI score0.03064EPSS
Exploits0
OSV
OSVadded 2020/01/09 12:0 a.m.27 views

DLA-2062-1 sa-exim - security update

Bulletin has no description...

9CVSS8.6AI score0.03064EPSS
Exploits0
CNVD
CNVDadded 2019/12/23 12:0 a.m.1 views

sa-exim code execution vulnerability

sa-exim is a package that supports spam filtering. A security vulnerability exists in sa-exim version 4.2.1. An attacker can exploit the vulnerability to execute arbitrary code...

9CVSS7.4AI score0.03064EPSS
Exploits0References1
NVD
NVDadded 2019/12/22 6:15 p.m.22 views

CVE-2019-19920

sa-exim 4.2.1 allows attackers to execute arbitrary code if they can write a .cf file or a rule. This occurs because Greylisting.pm relies on eval rather than direct parsing and/or use of the taint feature. This issue is similar to CVE-2018-11805...

9CVSS7.5AI score0.03064EPSS
Exploits0References5
OSV
OSVadded 2019/12/22 6:15 p.m.4 views

CVE-2019-19920

sa-exim 4.2.1 allows attackers to execute arbitrary code if they can write a .cf file or a rule. This occurs because Greylisting.pm relies on eval rather than direct parsing and/or use of the taint feature. This issue is similar to CVE-2018-11805...

8.8CVSS7.5AI score
Exploits0References5
OSV
OSVadded 2019/12/22 6:15 p.m.1 views

UBUNTU-CVE-2019-19920

sa-exim 4.2.1 allows attackers to execute arbitrary code if they can write a .cf file or a rule. This occurs because Greylisting.pm relies on eval rather than direct parsing and/or use of the taint feature. This issue is similar to CVE-2018-11805...

8.8CVSS7.6AI score0.03064EPSS
Exploits0References6
UbuntuCve
UbuntuCveadded 2019/12/22 6:15 p.m.26 views

CVE-2019-19920

sa-exim 4.2.1 allows attackers to execute arbitrary code if they can write a .cf file or a rule. This occurs because Greylisting.pm relies on eval rather than direct parsing and/or use of the taint feature. This issue is similar to CVE-2018-11805...

9CVSS7.5AI score0.03064EPSS
Exploits0References5
Prion
Prionadded 2019/12/22 6:15 p.m.21 views

Design/Logic Flaw

sa-exim 4.2.1 allows attackers to execute arbitrary code if they can write a .cf file or a rule. This occurs because Greylisting.pm relies on eval rather than direct parsing and/or use of the taint feature. This issue is similar to CVE-2018-11805...

9CVSS7.4AI score0.03064EPSS
Exploits0References5Affected Software3
Cvelist
Cvelistadded 2019/12/22 5:7 p.m.22 views

CVE-2019-19920

sa-exim 4.2.1 allows attackers to execute arbitrary code if they can write a .cf file or a rule. This occurs because Greylisting.pm relies on eval rather than direct parsing and/or use of the taint feature. This issue is similar to CVE-2018-11805...

7.6AI score0.03064EPSS
Exploits0References5
CVE
CVEadded 2019/12/22 5:7 p.m.144 views

CVE-2019-19920

CVE-2019-19920 affects sa-exim 4.2.1: attackers who can write a .cf file or rule can trigger arbitrary code execution due to Greylisting.pm using eval. This is related to, and similar in behavior to, CVE-2018-11805. Documented impact is remote code execution with the required access to customize ...

9CVSS7.4AI score0.03064EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVEadded 2019/12/22 5:7 p.m.27 views

CVE-2019-19920

sa-exim 4.2.1 allows attackers to execute arbitrary code if they can write a .cf file or a rule. This occurs because Greylisting.pm relies on eval rather than direct parsing and/or use of the taint feature. This issue is similar to CVE-2018-11805...

9CVSS9AI score0.03064EPSS
Exploits0
Positive Technologies
Positive Technologiesadded 2019/12/22 12:0 a.m.2 views

PT-2019-16009 · Exim +1 · Sa-Exim +1

Name of the Vulnerable Software and Affected Versions: sa-exim version 4.2.1 Description: The issue allows attackers to execute arbitrary code if they can write a .cf file or a rule. This occurs because Greylisting.pm relies on eval rather than direct parsing and/or use of the taint feature...

9CVSS7.2AI score0.03064EPSS
Exploits0References20
OSV
OSVadded 2006/03/19 1:2 a.m.4 views

CVE-2006-1251

Argument injection vulnerability in greylistclean.cron in sa-exim 4.2 allows remote attackers to delete arbitrary files via an email with a To field that contains a filename separated by whitespace, which is not quoted when greylistclean.cron provides the argument to the rm command...

6.9AI score
Exploits0References6
Rows per page
Query Builder