CVE-2019-10149
Published at:
-
05-06-2019 04:29
Last modified:
-
07-10-2022 04:15
Total changes:
-
3
Description
Common Vulnerability Scoring System (CVSS)
Low
Attack complexity
Network
Attack vector
High
Availability
High
Confidentiality
High
Integrity
None
Privileges required
Unchanged
Scope
None
User interaction
9.8
Base score
3.9
5.9
Exploitability score
Impact score
Verification logic
Reference
- https://www.exim.org/static/doc/security/CVE-2019-10149.txt
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10149
- USN-4010-1-Third Party Advisory
- [oss-security] 20190605 Re: CVE-2019-10149: Exim 4.87 to 4.91: possible remote exploit-Mailing List, Patch, Third Party Advisory
- [oss-security] 20190605 Re: CVE-2019-10149: Exim 4.87 to 4.91: possible remote exploit-Mailing List, Third Party Advisory
- [oss-security] 20190605 Re: CVE-2019-10149: Exim 4.87 to 4.91: possible remote exploit-Exploit, Mailing List
- DSA-4456-Third Party Advisory
- 20190605 [SECURITY] [DSA 4456-1] exim4 security update-Mailing List, Third Party Advisory
- GLSA-201906-01-Third Party Advisory
- [oss-security] 20190606 Re: CVE-2019-10149: Exim 4.87 to 4.91: possible remote exploit-Exploit, Mailing List, Third Party Advisory
- 108679-Broken Link
- openSUSE-SU-2019:1524-Mailing List, Third Party Advisory
- http://packetstormsecurity.com/files/153218/Exim-4.9.1-Remote-Command-Execution.html
- 20190611 The Return of the WIZard: RCE in Exim (CVE-2019-10149)-Mailing List, Third Party Advisory
- http://packetstormsecurity.com/files/153312/Exim-4.91-Local-Privilege-Escalation.html
- [oss-security] 20190725 Re: Statistics for distros lists updated for 2019Q2-Mailing List, Third Party Advisory
- [oss-security] 20190725 Re: Statistics for distros lists updated for 2019Q2-Mailing List, Third Party Advisory
- [oss-security] 20190726 Re: Statistics for distros lists updated for 2019Q2-Mailing List, Third Party Advisory
- http://packetstormsecurity.com/files/154198/Exim-4.91-Local-Privilege-Escalation.html
- [oss-security] 20210504 21Nails: Multiple vulnerabilities in Exim-Mailing List
Keywords