← Back

Sa Exim

sa-exim

Vendor: Sa Exim Project • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2019-19920
3Canonical
DebianSa Exim Project
3Debian Linux
Sa EximUbuntu Linux
Nov 21, 2024
Dec 22, 2019
N/A· v4
8.8 HIGH· v3
9.0 HIGH· v2
sa-exim 4.2.1 allows attackers to execute arbitrary code if they can write a .cf file or a rule. This occurs because Greylisting.pm relies on eval (rather than direct parsing and/or use of the taint feature). This issue...Show more
sa-exim 4.2.1 allows attackers to execute arbitrary code if they can write a .cf file or a rule. This occurs because Greylisting.pm relies on eval (rather than direct parsing and/or use of the taint feature). This issue is similar to CVE-2018-11805.Show less