CVE-2020-28022

Updated: 2022-07-06 23:49:29.098596

Description:

Exim 4 before 4.94.2 has Improper Restriction of Write Operations within the Bounds of a Memory Buffer. This occurs when processing name=value pairs within MAIL FROM and RCPT TO commands.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x HIGH 7.5
CVSS Version 3.x CRITICAL 9.8

Status

OS name Project name Version Score Severity Status Errata Last updated
Ubuntu 16.04 ELS exim 4.86.2-2 9.8 CRITICAL Released CLSA-2021:1640271821 2021-12-23 11:55:06