CVE-2019-16928

critical

Details

Source: MITRE

Published: 2019-09-27

Updated: 2021-07-21

Type: CWE-120

Risk Information

CVSS v2

Base Score: 7.5

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 10

Severity: HIGH

CVSS v3

Base Score: 9.8

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 3.9

Severity: CRITICAL

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:exim:exim:*:*:*:*:*:*:*:* versions from 4.92 to 4.92.2 (inclusive)

Configuration 2

OR

cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

Tenable Plugins

View all (9 total)

IDNameProductFamilySeverity
149614openSUSE Security Update : exim (openSUSE-2021-677) (Stack Clash)NessusSuSE Local Security Checks
critical
134775GLSA-202003-47 : Exim: Heap-based buffer overflowNessusGentoo Local Security Checks
critical
130280Amazon Linux AMI : exim (ALAS-2019-1310)NessusAmazon Linux Local Security Checks
critical
129768Fedora 29 : exim (2019-d778bd4137)NessusFedora Local Security Checks
critical
129655Fedora 31 : exim (2019-e080507ba5)NessusFedora Local Security Checks
critical
129508Fedora 30 : exim (2019-006dfc94cd)NessusFedora Local Security Checks
critical
129470Exim 4.92.x < 4.92.3 Heap Buffer OverflowNessusSMTP problems
critical
129466Ubuntu 19.04 : Exim vulnerability (USN-4141-1)NessusUbuntu Local Security Checks
critical
129414Debian DSA-4536-1 : exim4 - security updateNessusDebian Local Security Checks
critical