Vulnerabilities > CVE-2020-28011 - Out-of-bounds Write vulnerability in Exim

047910
CVSS 7.8 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
local
low complexity
exim
CWE-787
NVD
Published: 2021-05-06
Updated: 2021-05-10

Summary

Exim 4 before 4.94.2 allows Heap-based Buffer Overflow in queue_run via two sender options: -R and -S. This may cause privilege escalation from exim to root.

Vulnerable Configurations

Part Description Count
Application
Exim
122

Common Weakness Enumeration (CWE)

References