CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-28007

Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the log directory (owned by a non-root user), a symlink or hard link attack allows overwriting critical root-owned files anywhere on the filesystem.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 31.3%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 7.2

References

Products affected by CVE-2020-28007

Exim » Exim » Version: 4.00

cpe:2.3:a:exim:exim:4.00
Exim » Exim » Version: 4.01

cpe:2.3:a:exim:exim:4.01
Exim » Exim » Version: 4.02

cpe:2.3:a:exim:exim:4.02
Exim » Exim » Version: 4.03

cpe:2.3:a:exim:exim:4.03
Exim » Exim » Version: 4.04

cpe:2.3:a:exim:exim:4.04
Exim » Exim » Version: 4.05

cpe:2.3:a:exim:exim:4.05
Exim » Exim » Version: 4.10

cpe:2.3:a:exim:exim:4.10
Exim » Exim » Version: 4.11

cpe:2.3:a:exim:exim:4.11
Exim » Exim » Version: 4.12

cpe:2.3:a:exim:exim:4.12
Exim » Exim » Version: 4.14

cpe:2.3:a:exim:exim:4.14
Exim » Exim » Version: 4.20

cpe:2.3:a:exim:exim:4.20
Exim » Exim » Version: 4.21

cpe:2.3:a:exim:exim:4.21
Exim » Exim » Version: 4.22

cpe:2.3:a:exim:exim:4.22
Exim » Exim » Version: 4.23

cpe:2.3:a:exim:exim:4.23
Exim » Exim » Version: 4.24

cpe:2.3:a:exim:exim:4.24
Exim » Exim » Version: 4.30

cpe:2.3:a:exim:exim:4.30
Exim » Exim » Version: 4.31

cpe:2.3:a:exim:exim:4.31
Exim » Exim » Version: 4.32

cpe:2.3:a:exim:exim:4.32
Exim » Exim » Version: 4.33

cpe:2.3:a:exim:exim:4.33
Exim » Exim » Version: 4.34

cpe:2.3:a:exim:exim:4.34
Exim » Exim » Version: 4.40

cpe:2.3:a:exim:exim:4.40
Exim » Exim » Version: 4.41

cpe:2.3:a:exim:exim:4.41
Exim » Exim » Version: 4.42

cpe:2.3:a:exim:exim:4.42
Exim » Exim » Version: 4.43

cpe:2.3:a:exim:exim:4.43
Exim » Exim » Version: 4.44

cpe:2.3:a:exim:exim:4.44
Exim » Exim » Version: 4.50

cpe:2.3:a:exim:exim:4.50
Exim » Exim » Version: 4.51

cpe:2.3:a:exim:exim:4.51
Exim » Exim » Version: 4.52

cpe:2.3:a:exim:exim:4.52
Exim » Exim » Version: 4.53

cpe:2.3:a:exim:exim:4.53
Exim » Exim » Version: 4.54

cpe:2.3:a:exim:exim:4.54
Exim » Exim » Version: 4.60

cpe:2.3:a:exim:exim:4.60
Exim » Exim » Version: 4.61

cpe:2.3:a:exim:exim:4.61
Exim » Exim » Version: 4.62

cpe:2.3:a:exim:exim:4.62
Exim » Exim » Version: 4.63

cpe:2.3:a:exim:exim:4.63
Exim » Exim » Version: 4.64

cpe:2.3:a:exim:exim:4.64
Exim » Exim » Version: 4.65

cpe:2.3:a:exim:exim:4.65
Exim » Exim » Version: 4.66

cpe:2.3:a:exim:exim:4.66
Exim » Exim » Version: 4.67

cpe:2.3:a:exim:exim:4.67
Exim » Exim » Version: 4.68

cpe:2.3:a:exim:exim:4.68
Exim » Exim » Version: 4.69

cpe:2.3:a:exim:exim:4.69
Exim » Exim » Version: 4.70

cpe:2.3:a:exim:exim:4.70
Exim » Exim » Version: 4.71

cpe:2.3:a:exim:exim:4.71
Exim » Exim » Version: 4.72

cpe:2.3:a:exim:exim:4.72
Exim » Exim » Version: 4.73

cpe:2.3:a:exim:exim:4.73
Exim » Exim » Version: 4.74

cpe:2.3:a:exim:exim:4.74
Exim » Exim » Version: 4.75

cpe:2.3:a:exim:exim:4.75
Exim » Exim » Version: 4.76

cpe:2.3:a:exim:exim:4.76
Exim » Exim » Version: 4.77

cpe:2.3:a:exim:exim:4.77
Exim » Exim » Version: 4.80

cpe:2.3:a:exim:exim:4.80
Exim » Exim » Version: 4.80.1

cpe:2.3:a:exim:exim:4.80.1
Exim » Exim » Version: 4.82

cpe:2.3:a:exim:exim:4.82
Exim » Exim » Version: 4.82.1

cpe:2.3:a:exim:exim:4.82.1
Exim » Exim » Version: 4.84.2

cpe:2.3:a:exim:exim:4.84.2
Exim » Exim » Version: 4.85

cpe:2.3:a:exim:exim:4.85
Exim » Exim » Version: 4.85.1

cpe:2.3:a:exim:exim:4.85.1
Exim » Exim » Version: 4.85.2

cpe:2.3:a:exim:exim:4.85.2
Exim » Exim » Version: 4.86

cpe:2.3:a:exim:exim:4.86
Exim » Exim » Version: 4.86.1

cpe:2.3:a:exim:exim:4.86.1
Exim » Exim » Version: 4.86.2

cpe:2.3:a:exim:exim:4.86.2
Exim » Exim » Version: 4.87

cpe:2.3:a:exim:exim:4.87
Exim » Exim » Version: 4.87.1

cpe:2.3:a:exim:exim:4.87.1
Exim » Exim » Version: 4.88

cpe:2.3:a:exim:exim:4.88
Exim » Exim » Version: 4.89

cpe:2.3:a:exim:exim:4.89
Exim » Exim » Version: 4.89.1

cpe:2.3:a:exim:exim:4.89.1
Exim » Exim » Version: 4.90

cpe:2.3:a:exim:exim:4.90
Exim » Exim » Version: 4.90.0.22

cpe:2.3:a:exim:exim:4.90.0.22
Exim » Exim » Version: 4.90.0.27

cpe:2.3:a:exim:exim:4.90.0.27
Exim » Exim » Version: 4.90.1

cpe:2.3:a:exim:exim:4.90.1
Exim » Exim » Version: 4.91

cpe:2.3:a:exim:exim:4.91
Exim » Exim » Version: 4.92

cpe:2.3:a:exim:exim:4.92
Exim » Exim » Version: 4.92.1

cpe:2.3:a:exim:exim:4.92.1
Exim » Exim » Version: 4.92.2

cpe:2.3:a:exim:exim:4.92.2
Exim » Exim » Version: 4.93

cpe:2.3:a:exim:exim:4.93
Exim » Exim » Version: 4.93.0.4

cpe:2.3:a:exim:exim:4.93.0.4
Exim » Exim » Version: 4.93.0.4-3.1

cpe:2.3:a:exim:exim:4.93.0.4-3.1
Exim » Exim » Version: 4.94

cpe:2.3:a:exim:exim:4.94
Exim » Exim » Version: 4.94.1

cpe:2.3:a:exim:exim:4.94.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-28007

Products

Pricing

Contact Us