CVE-2022-37452 | SynScan

Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2022-37452

Exim before 4.95 has a heap-based buffer overflow for the alias list in host_name_lookup in host.c when sender_host_name is set.

Published: Aug 7, 2022
Updated: Apr 14, 2023
CVE: CVE-2022-37452
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-787

Affected Software
References

Software	From	Fixed in
exim / exim	-	4.95
debian / debian_linux	10.0	10.0.x