CVE-2022-37452

moderate-risk
Published 2022-08-07

Exim before 4.95 has a heap-based buffer overflow for the alias list in host_name_lookup in host.c when sender_host_name is set.

Do I need to act?

~
4.7% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
+
Fix available
Upgrade to: fb62e7a12be6593a5432fba4a9e4468c34feef5c, d4bc023436e4cce7c23c5f8bb5199e178b4cc743
9
CVSS 9.8/10 Critical
NETWORK / LOW complexity

Affected Products (2)

Affected Vendors

Debian Exim

References (14)

Patch https://github.com/Exim/exim/commit/d4bc023436e4cce7c23c5f8bb5199e178b4cc743
Patch https://github.com/Exim/exim/compare/exim-4.94...exim-4.95
Release Notes https://github.com/Exim/exim/wiki/EximSecurity
Exploit https://github.com/ivd38/exim_overflow
Mailing List https://lists.debian.org/debian-lts-announce/2022/08/msg00014.html
Vendor Advisory https://www.exim.org/static/doc/security/
Mailing List https://www.openwall.com/lists/oss-security/2022/08/06/8
Patch https://github.com/Exim/exim/commit/d4bc023436e4cce7c23c5f8bb5199e178b4cc743
Patch https://github.com/Exim/exim/compare/exim-4.94...exim-4.95
Release Notes https://github.com/Exim/exim/wiki/EximSecurity
Exploit https://github.com/ivd38/exim_overflow
Mailing List https://lists.debian.org/debian-lts-announce/2022/08/msg00014.html
Vendor Advisory https://www.exim.org/static/doc/security/
Mailing List https://www.openwall.com/lists/oss-security/2022/08/06/8
47
/ 100
moderate-risk
Severity 32/34 · Critical
Exploitability 8/34 · Low
Exposure 7/34 · Low