rpm package
suse/exim&distro=SUSE Package Hub 15 SP4
pkg:rpm/suse/exim&distro=SUSE%20Package%20Hub%2015%20SP4
Vulnerabilities (6)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-42119 | — | < 4.94.2-bp154.2.9.1 | 4.94.2-bp154.2.9.1 | May 3, 2024 | Exim dnsdb Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of Exim. Authentication is not required to exploit this vulnerability. The specific flaw exists wi | ||
| CVE-2023-42117 | — | < 4.94.2-bp154.2.9.1 | 4.94.2-bp154.2.9.1 | May 3, 2024 | Exim Improper Neutralization of Special Elements Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Exim. Authentication is not required to exploit this vulnerability. The specific flaw exists wi | ||
| CVE-2023-42116 | — | < 4.94.2-bp155.5.3.1 | 4.94.2-bp155.5.3.1 | May 3, 2024 | Exim SMTP Challenge Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Exim. Authentication is not required to exploit this vulnerability. The specific flaw exists wit | ||
| CVE-2023-42115 | — | < 4.94.2-bp155.5.3.1 | 4.94.2-bp155.5.3.1 | May 3, 2024 | Exim AUTH Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Exim. Authentication is not required to exploit this vulnerability. The specific flaw exists within the smtp serv | ||
| CVE-2023-42114 | — | < 4.94.2-bp155.5.3.1 | 4.94.2-bp155.5.3.1 | May 3, 2024 | Exim NTLM Challenge Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Exim. Authentication is not required to exploit this vulnerability. The specific flaw exists wit | ||
| CVE-2022-3559 | — | < 4.94.2-bp154.2.3.1 | 4.94.2-bp154.2.3.1 | Oct 17, 2022 | A vulnerability was found in Exim and classified as problematic. This issue affects some unknown processing of the component Regex Handler. The manipulation leads to use after free. The name of the patch is 4e9ed49f8f12eb331b29bd5b6dc3693c520fddc2. It is recommended to apply a pa |
- CVE-2023-42119May 3, 2024affected < 4.94.2-bp154.2.9.1fixed 4.94.2-bp154.2.9.1
Exim dnsdb Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of Exim. Authentication is not required to exploit this vulnerability. The specific flaw exists wi
- CVE-2023-42117May 3, 2024affected < 4.94.2-bp154.2.9.1fixed 4.94.2-bp154.2.9.1
Exim Improper Neutralization of Special Elements Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Exim. Authentication is not required to exploit this vulnerability. The specific flaw exists wi
- CVE-2023-42116May 3, 2024affected < 4.94.2-bp155.5.3.1fixed 4.94.2-bp155.5.3.1
Exim SMTP Challenge Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Exim. Authentication is not required to exploit this vulnerability. The specific flaw exists wit
- CVE-2023-42115May 3, 2024affected < 4.94.2-bp155.5.3.1fixed 4.94.2-bp155.5.3.1
Exim AUTH Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Exim. Authentication is not required to exploit this vulnerability. The specific flaw exists within the smtp serv
- CVE-2023-42114May 3, 2024affected < 4.94.2-bp155.5.3.1fixed 4.94.2-bp155.5.3.1
Exim NTLM Challenge Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Exim. Authentication is not required to exploit this vulnerability. The specific flaw exists wit
- CVE-2022-3559Oct 17, 2022affected < 4.94.2-bp154.2.3.1fixed 4.94.2-bp154.2.3.1
A vulnerability was found in Exim and classified as problematic. This issue affects some unknown processing of the component Regex Handler. The manipulation leads to use after free. The name of the patch is 4e9ed49f8f12eb331b29bd5b6dc3693c520fddc2. It is recommended to apply a pa