sa-exim 4.2.1 allows attackers to execute arbitrary code if they can write a .cf file or a rule. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. This OS Command Injection vulnerability could allow attackers to execute arbitrary operating system commands on the host.
RCE
Command Injection
Sa Exim
Ubuntu Linux
Debian Linux
NVD
CVSS 3.1
8.8
EPSS
3.2%