CVE-2019-10149 - Exim Mail Transfer Agent (MTA) Improper Input Validation

CVE-2019-10149: Exim | Mail Transfer Agent (MTA)

Date Added:
2022-01-10

Due Date:
2022-07-10

Vulnerability Name: Exim Mail Transfer Agent (MTA) Improper Input Validation

Description: Improper validation of recipient address in deliver_message() function in /src/deliver.c may lead to remote command execution.

Known To Be Used in Ransomware Campaigns?: Unknown

Action: Apply updates per vendor instructions.

Additional Notes: https://nvd.nist.gov/vuln/detail/CVE-2019-10149

Related News Articles: Critical Exim bug bypasses security filters on 1.5 million mail serversJuly 13, 2024

Free security scan for your website

Don't show website scan report rating on the leaderboard