|
210561
|
6.1 |
MEDIUM
Local
|
exim
|
exim
|
Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. The -oP option is available to the exim user, and allows a denial of service because root-owned files can be overwritten.
|
CWE-269
Improper Privilege Management
|
CVE-2020-28014
|
2024-11-21 14:22 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210562
|
7.8 |
HIGH
Local
|
exim
|
exim
|
Exim 4 before 4.94.2 allows Heap-based Buffer Overflow because it mishandles "-F '.('" on the command line, and thus may allow privilege escalation from any user to root. This occurs because of the i…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-28013
|
2024-11-21 14:22 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210563
|
7.8 |
HIGH
Local
|
exim
|
exim
|
Exim 4 before 4.94.2 allows Exposure of File Descriptor to Unintended Control Sphere because rda_interpret uses a privileged pipe that lacks a close-on-exec flag.
|
NVD-CWE-Other
|
CVE-2020-28012
|
2024-11-21 14:22 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210564
|
7.8 |
HIGH
Local
|
exim
|
exim
|
Exim 4 before 4.94.2 allows Heap-based Buffer Overflow in queue_run via two sender options: -R and -S. This may cause privilege escalation from exim to root.
|
CWE-787
Out-of-bounds Write
|
CVE-2020-28011
|
2024-11-21 14:22 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210565
|
7.8 |
HIGH
Local
|
exim
|
exim
|
Exim 4 before 4.94.2 allows Out-of-bounds Write because the main function, while setuid root, copies the current working directory pathname into a buffer that is too small (on some common platforms).
|
CWE-787
Out-of-bounds Write
|
CVE-2020-28010
|
2024-11-21 14:22 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210566
|
7.8 |
HIGH
Local
|
exim
|
exim
|
Exim 4 before 4.94.2 allows Integer Overflow to Buffer Overflow because get_stdinput allows unbounded reads that are accompanied by unbounded increases in a certain size variable. NOTE: exploitation …
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2020-28009
|
2024-11-21 14:22 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210567
|
7.8 |
HIGH
Local
|
exim
|
exim
|
Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the spool directory (owned by a non-root user), an attacker can write to a /var/spool/exim4/input s…
|
CWE-269
Improper Privilege Management
|
CVE-2020-28008
|
2024-11-21 14:22 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210568
|
7.8 |
HIGH
Local
|
exim
|
exim
|
Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the log directory (owned by a non-root user), a symlink or hard link attack allows overwriting crit…
|
CWE-59
Link Following
|
CVE-2020-28007
|
2024-11-21 14:22 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210569
|
5.4 |
MEDIUM
Network
|
online_discussion_forum_project
|
online_discussion_forum
|
The messaging subsystem in the Online Discussion Forum 1.0 is vulnerable to XSS in the message body. An authenticated user can send messages to arbitrary users on the system that include javascript t…
|
CWE-79
Cross-site Scripting
|
CVE-2020-28141
|
2024-11-21 14:22 |
2021-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210570
|
8.1 |
HIGH
Network
|
cosori
|
cs158-af_firmware
|
A unauthenticated backdoor exists in the configuration server functionality of Cosori Smart 5.8-Quart Air Fryer CS158-AF 1.1.0. A specially crafted JSON object can lead to code execution. An attacker…
|
NVD-CWE-Other
|
CVE-2020-28593
|
2024-11-21 14:22 |
2021-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
