| Bug | Description |
|---|
| CVE-2024-39929 | Exim through 4.97.1 misparses a multiline RFC 2231 header filename, an ... |
| CVE-2023-51766 | Exim before 4.97.1 allows SMTP smuggling in certain PIPELINING/CHUNKIN ... |
| CVE-2023-42119 | Exim dnsdb Out-Of-Bounds Read Information Disclosure Vulnerability. Th ... |
| CVE-2023-42117 | Exim Improper Neutralization of Special Elements Remote Code Execution ... |
| CVE-2023-42116 | Exim SMTP Challenge Stack-based Buffer Overflow Remote Code Execution ... |
| CVE-2023-42115 | Exim AUTH Out-Of-Bounds Write Remote Code Execution Vulnerability. Thi ... |
| CVE-2023-42114 | Exim NTLM Challenge Out-Of-Bounds Read Information Disclosure Vulnerab ... |
| CVE-2022-37452 | Exim before 4.95 has a heap-based buffer overflow for the alias list i ... |
| CVE-2022-37451 | Exim before 4.96 has an invalid free in pam_converse in auths/call_pam ... |
| CVE-2022-3620 | A vulnerability was found in Exim and classified as problematic. This ... |
| CVE-2022-3559 | A vulnerability was found in Exim and classified as problematic. This ... |
| CVE-2021-38371 | The STARTTLS feature in Exim through 4.94.2 allows response injection ... |
| CVE-2021-27216 | Exim 4 before 4.94.2 has Execution with Unnecessary Privileges. By lev ... |
| CVE-2020-28026 | Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters, r ... |
| CVE-2020-28025 | Exim 4 before 4.94.2 allows Out-of-bounds Read because pdkim_finish_bo ... |
| CVE-2020-28024 | Exim 4 before 4.94.2 allows Buffer Underwrite that may result in unaut ... |
| CVE-2020-28023 | Exim 4 before 4.94.2 allows Out-of-bounds Read. smtp_setup_msg may dis ... |
| CVE-2020-28022 | Exim 4 before 4.94.2 has Improper Restriction of Write Operations with ... |
| CVE-2020-28021 | Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters. A ... |
| CVE-2020-28020 | Exim 4 before 4.92 allows Integer Overflow to Buffer Overflow, in whic ... |
| CVE-2020-28019 | Exim 4 before 4.94.2 has Improper Initialization that can lead to recu ... |
| CVE-2020-28018 | Exim 4 before 4.94.2 allows Use After Free in smtp_reset in certain si ... |
| CVE-2020-28017 | Exim 4 before 4.94.2 allows Integer Overflow to Buffer Overflow in rec ... |
| CVE-2020-28016 | Exim 4 before 4.94.2 allows an off-by-two Out-of-bounds Write because ... |
| CVE-2020-28015 | Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters. L ... |
| CVE-2020-28014 | Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. The ... |
| CVE-2020-28013 | Exim 4 before 4.94.2 allows Heap-based Buffer Overflow because it mish ... |
| CVE-2020-28012 | Exim 4 before 4.94.2 allows Exposure of File Descriptor to Unintended ... |
| CVE-2020-28011 | Exim 4 before 4.94.2 allows Heap-based Buffer Overflow in queue_run vi ... |
| CVE-2020-28010 | Exim 4 before 4.94.2 allows Out-of-bounds Write because the main funct ... |
| CVE-2020-28009 | Exim 4 before 4.94.2 allows Integer Overflow to Buffer Overflow becaus ... |
| CVE-2020-28008 | Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Bec ... |
| CVE-2020-28007 | Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Bec ... |
| CVE-2020-12783 | Exim through 4.93 has an out-of-bounds read in the SPA authenticator t ... |
| CVE-2019-16928 | Exim 4.92 through 4.92.2 allows remote code execution, a different vul ... |
| CVE-2019-15846 | Exim before 4.92.2 allows remote attackers to execute arbitrary code a ... |
| CVE-2019-13917 | Exim 4.85 through 4.92 (fixed in 4.92.1) allows remote code execution ... |
| CVE-2019-10149 | A flaw was found in Exim versions 4.87 to 4.91 (inclusive). Improper v ... |
| CVE-2018-6789 | An issue was discovered in the base64d function in the SMTP listener i ... |
| CVE-2017-1000369 | Exim supports the use of multiple "-p" command line arguments which ar ... |
| CVE-2017-16944 | The receive_msg function in receive.c in the SMTP daemon in Exim 4.88 ... |
| CVE-2017-16943 | The receive_msg function in receive.c in the SMTP daemon in Exim 4.88 ... |
| CVE-2016-9963 | Exim before 4.87.1 might allow remote attackers to obtain the private ... |
| CVE-2016-1531 | Exim before 4.86.2, when installed setuid root, allows local users to ... |
| CVE-2014-2972 | expand.c in Exim before 4.83 expands mathematical comparisons twice, w ... |
| CVE-2014-2957 | The dmarc_process function in dmarc.c in Exim before 4.82.1, when EXPE ... |
| CVE-2012-5671 | Heap-based buffer overflow in the dkim_exim_query_dns_txt function in ... |
| CVE-2011-1764 | Format string vulnerability in the dkim_exim_verify_finish function in ... |
| CVE-2011-1407 | The DKIM implementation in Exim 4.7x before 4.76 permits matching for ... |
| CVE-2011-0017 | The open_log function in log.c in Exim 4.72 and earlier does not check ... |
| CVE-2010-4345 | Exim 4.72 and earlier allows local users to gain privileges by leverag ... |
| CVE-2010-4344 | Heap-based buffer overflow in the string_vformat function in string.c ... |
| CVE-2010-2024 | transports/appendfile.c in Exim before 4.72, when MBX locking is enabl ... |
| CVE-2010-2023 | transports/appendfile.c in Exim before 4.72, when a world-writable sti ... |
| CVE-2005-0022 | Buffer overflow in the spa_base64_to_bits function in Exim before 4.43 ... |
| CVE-2005-0021 | Multiple buffer overflows in Exim before 4.43 may allow attackers to e ... |
| CVE-2004-0400 | Stack-based buffer overflow in Exim 4 before 4.33, when the headers_ch ... |
| CVE-2004-0399 | Stack-based buffer overflow in Exim 3.35, and other versions before 4, ... |
| CVE-2002-1381 | Format string vulnerability in daemon.c for Exim 4.x through 4.10, and ... |