all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

CVE-2023-42115: Critical RCE Vulnerability in Exim

Add to bookmarks
Oct. 3, 2023, 11:20 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

On 2 October 2023, Exim released security fixes for an out-of-bounds write remote code execution (RCE) vulnerability (CVE-2023-42115, CVSS: 9.8). This vulnerability affects the Simple Mail Transfer Protocol (SMTP) service and is caused by improper validation of user input. A threat actor can remotely exploit CVE-2023-42115 by writing data beyond the boundaries of a buffer, … CVE-2023-42115: Critical RCE Vulnerability in Exim


Article Link: CVE-2023-42115: Critical RCE Vulnerability in Exim - Arctic Wolf


1 post - 1 participant


Read full …

actor beyond code code execution critical cve cve-2023-42115 cvss data exim exploit fixes input mail october out-of-bounds out-of-bounds write protocol rce remote code remote code execution security service simple smtp threat threat actor transfer validation vulnerability writing

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Mounting global ransomware attacks significantly impact US an hour ago | malware.news
article attacks avril haines director +12
Media, think tank, service spoofing conducted in APT42 cyberespionage operations an hour ago | malware.news
apt42 campaigns charming kitten cyberespionage +30
Old vulnerable D-Link routers subjected to novel Goldoon botnet attacks an hour ago | malware.news
april article attacks botnet +13
Android apps targeted by new Dirty Stream attack an hour ago | malware.news
android android apps apps arbitrary code +18
Details on 2021 Chemonics hack remain scant an hour ago | malware.news
agency article compromised cyberattack +11
Data breach impacts Airsoft community site an hour ago | malware.news
article breach cloud cloud storage +20
New AI security bill unveiled in Senate an hour ago | malware.news
act ai act ai security article +15
Path traversal vulnerability elimination in software sought by feds an hour ago | malware.news
agency article bleepingcomputer cybersecurity +17
Accelerated patching found with CISA KEV catalog-listed flaws an hour ago | malware.news
agency article catalog cisa +24

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Intern, Cyber Security Vulnerability Management

@ Grab | Petaling Jaya, Malaysia
View on infosec-jobs.com

Compliance - Global Privacy Office - Associate - Bengaluru

@ Goldman Sachs | Bengaluru, Karnataka, India
View on infosec-jobs.com

Cyber Security Engineer (m/w/d) Operational Technology

@ MAN Energy Solutions | Oberhausen, DE, 46145
View on infosec-jobs.com

Armed Security Officer - Hospital

@ Allied Universal | Sun Valley, CA, United States
View on infosec-jobs.com

Governance, Risk and Compliance Officer (Africa)

@ dLocal | Lagos (Remote)
View on infosec-jobs.com
View more jobs