exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 6

CVE-2020-28008

больше 4 лет назад

Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the spool directory (owned by a non-root user), an attacker can write to a /var/spool/exim4/input spool header file, in which a crafted recipient address can indirectly lead to command execution.

CVSS3: 7.8

EPSS: Низкий

CVE-2020-28008

больше 4 лет назад

Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the spool directory (owned by a non-root user), an attacker can write to a /var/spool/exim4/input spool header file, in which a crafted recipient address can indirectly lead to command execution.

CVSS3: 7.8

EPSS: Низкий

CVE-2020-28008

больше 4 лет назад

Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Bec ...

CVSS3: 7.8

EPSS: Низкий

GHSA-24mx-4mj6-v64q

больше 3 лет назад

Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the spool directory (owned by a non-root user), an attacker can write to a /var/spool/exim4/input spool header file, in which a crafted recipient address can indirectly lead to command execution.

EPSS: Низкий

BDU:2021-02760

около 5 лет назад

Уязвимость агента пересылки сообщений Exim, связанная с ошибками управления привилегиями, позволяющая нарушителю повысить привилегии в системе

CVSS3: 7.8

EPSS: Низкий

openSUSE-SU-2021:0677-1

больше 4 лет назад

Security update for exim

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2020-28008 Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the spool directory (owned by a non-root user), an attacker can write to a /var/spool/exim4/input spool header file, in which a crafted recipient address can indirectly lead to command execution.	CVSS3: 7.8	0% Низкий	больше 4 лет назад
CVE-2020-28008 Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the spool directory (owned by a non-root user), an attacker can write to a /var/spool/exim4/input spool header file, in which a crafted recipient address can indirectly lead to command execution.	CVSS3: 7.8	0% Низкий	больше 4 лет назад
CVE-2020-28008 Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Bec ...	CVSS3: 7.8	0% Низкий	больше 4 лет назад
GHSA-24mx-4mj6-v64q Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the spool directory (owned by a non-root user), an attacker can write to a /var/spool/exim4/input spool header file, in which a crafted recipient address can indirectly lead to command execution.		0% Низкий	больше 3 лет назад
BDU:2021-02760 Уязвимость агента пересылки сообщений Exim, связанная с ошибками управления привилегиями, позволяющая нарушителю повысить привилегии в системе	CVSS3: 7.8	0% Низкий	около 5 лет назад
openSUSE-SU-2021:0677-1 Security update for exim			больше 4 лет назад

Уязвимостей на страницу