← ExploitWatch
HomeExploited Vulnerabilities

CVE-2019-10149 — Actively Exploited: Mail Transfer Agent (MTA) (Exim)

Improper validation of recipient address in deliver_message() function in /src/deliver.c may lead to remote command execution.

CVE IDCVE-2019-10149
VendorExim
ProductMail Transfer Agent (MTA)
Vulnerability nameExim Mail Transfer Agent (MTA) Improper Input Validation
Date added2022-01-10
Remediation due2022-07-10
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionImproper validation of recipient address in deliver_message() function in /src/deliver.c may lead to remote command execution.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →