Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
exim exim 4.80 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2012-5671
Heap-based buffer overflow in the dkim_exim_query_dns_txt function in dkim.c in Exim 4.70 up to and including 4.80, when DKIM support is enabled and acl_smtp_connect and acl_smtp_rcpt are not set to "warn control = dkim_disable_verify," allows remote malicious users to ...
Exim Exim 4.76
Exim Exim 4.77
Exim Exim 4.72
Exim Exim 4.73
Exim Exim 4.74
Exim Exim 4.75
Exim Exim 4.70
Exim Exim 4.71
Exim Exim 4.80
4.6
CVSSv2
CVE-2014-2972
expand.c in Exim prior to 4.83 expands mathematical comparisons twice, which allows local users to gain privileges and execute arbitrary commands via a crafted lookup value.
Exim Exim 4.77
Exim Exim 4.76
Exim Exim 4.69
Exim Exim 4.68
Exim Exim 4.61
Exim Exim 4.60
Exim Exim 4.42
Exim Exim 4.41
Exim Exim 4.24
Exim Exim 4.23
Exim Exim 4.10
Exim Exim 4.05
Exim Exim 4.75
Exim Exim 4.74
Exim Exim 4.67
Exim Exim 4.66
Exim Exim 4.54
Exim Exim 4.53
Exim Exim 4.40
Exim Exim 4.34
Exim Exim 4.22
Exim Exim 4.21
6.8
CVSSv2
CVE-2014-2957
The dmarc_process function in dmarc.c in Exim prior to 4.82.1, when EXPERIMENTAL_DMARC is enabled, allows remote malicious users to execute arbitrary code via the From header in an email, which is passed to the expand_string function.
Exim Exim 4.77
Exim Exim 4.76
Exim Exim 4.75
Exim Exim 4.74
Exim Exim 4.60
Exim Exim 4.54
Exim Exim 4.53
Exim Exim 4.52
Exim Exim 4.24
Exim Exim 4.23
Exim Exim 4.22
Exim Exim 4.21
Exim Exim 4.20
Exim Exim 4.80.1
Exim Exim 4.72
Exim Exim 4.70
Exim Exim 4.65
Exim Exim 4.63
Exim Exim 4.61
Exim Exim 4.51
Exim Exim 4.44
Exim Exim 4.32
6.9
CVSSv2
CVE-2016-1531
Exim prior to 4.86.2, when installed setuid root, allows local users to gain privileges via the perl_startup argument.
Exim Exim
3 EDB exploits
6 Github repositories
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started