Lucene search
Redhat.comRH:CVE-2019-13917HistoryJul 26, 2019 - 3:51 a.m.
CVE-2019-13917
2019-07-2603:51:42
redhat.com
access.redhat.com
16
EPSS
0.075
Percentile
94.2%
Exim 4.85 through 4.92 (fixed in 4.92.1) allows remote code execution as root in some unusual configurations that use the ${sort } expansion for items that can be controlled by an attacker (e.g., $local_part or $domain).
Mitigation
Do not use ${sort } in your exim configuration.
Related
osv
osv
exim4 - security update
2019-07-25 00:00:00
CVE-2019-13917
2019-07-25 20:15:11
exim-4.94.2-4.2 on GA media
2024-06-15 00:00:00
nvd
nvd
CVE-2019-13917
2019-07-25 20:15:11
debian
debian
[SECURITY] [DSA 4488-1] exim4 security update
2019-07-25 13:08:44
[SECURITY] [DSA 4488-1] exim4 security update
2019-07-25 13:08:44
debiancve
debiancve
CVE-2019-13917
2019-07-25 20:15:11
nessus
nessus
Amazon Linux AMI : exim (ALAS-2019-1252)
2019-07-26 00:00:00
Ubuntu 16.04 LTS / 18.04 LTS : Exim vulnerability (USN-4075-1)
2019-07-26 00:00:00
prion
prion
Remote code execution
2019-07-25 20:15:00
openvas
openvas
Ubuntu: Security Advisory (USN-4075-1)
2019-07-26 00:00:00
Exim 4.85 - 4.92 RCE Vulnerability
2019-07-29 00:00:00
Debian: Security Advisory (DSA-4488-1)
2019-07-26 00:00:00
cve
cve
CVE-2019-13917
2019-07-25 20:15:11
freebsd
freebsd
Exim -- RCE in ${sort} expansion
2019-07-18 00:00:00
cvelist
cvelist
CVE-2019-13917
2019-07-25 19:07:08
ubuntu
ubuntu
Exim vulnerability
2019-07-25 00:00:00
archlinux
archlinux
[ASA-201908-4] exim: arbitrary code execution
2019-08-05 00:00:00
amazon
amazon
Important: exim
2019-07-25 18:40:00
ubuntucve
ubuntucve
CVE-2019-13917
2019-07-25 00:00:00
alpinelinux
alpinelinux
CVE-2019-13917
2019-07-25 20:15:11
gentoo
gentoo
Exim: Multiple vulnerabilities
2019-09-07 00:00:00
suse
suse
Security update for exim (critical)
2021-05-20 00:00:00
Security update for exim (critical)
2021-05-07 00:00:00
Security update for exim (critical)
2021-05-20 00:00:00