all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Exim Remote Code Execution Vulnerability (CVS 2023-42115) Notification

Add to bookmarks
Oct. 10, 2023, 6:08 a.m. | NSFOCUS

Security Boulevard securityboulevard.com

Overview Recently, NSFOCUS CERT detected an Exim remote code execution vulnerability (CVE-2023-42115). When external authentication is enabled, due to improper user input verification, an unauthenticated attacker can remotely exploit this vulnerability by writing data beyond the bounds, ultimately executing arbitrary code on the target server. At present, the details of the vulnerability have been disclosed. […]


The post Exim Remote Code Execution Vulnerability (CVS 2023-42115) Notification appeared first on NSFOCUS, Inc., a global network and cyber security leader, protects enterprises …

arbitrary code attacker authentication beyond blog cert code code execution cve cve-2023-42115 cvs data emergency-response exim exploit external input notification remote code remote code execution server target ultimately unauthenticated verification vulnerability writing

Visit resource

More from securityboulevard.com / Security Boulevard

Airsoft Data Breach Exposes Data of 75,000 Players 3 hours ago | securityboulevard.com
airsoft attack surface authentication breach +31
Palo Alto Networks Extends SASE Reach to Unmanaged Devices 7 hours ago | securityboulevard.com
alto devices devops devsecops +20
USENIX Security ’23 – Cryptographic Deniability: A Multi-perspective Study of User Perceptions and Expectations 7 hours ago | securityboulevard.com
access authors channel conference +17
The impact of automating open source dependency management 7 hours ago | securityboulevard.com
automation business consuming customer +14
Unlocking SMB Cybersecurity: The Rise of Virtual CISOs in 2024 and Beyond 7 hours ago | securityboulevard.com
align beyond business businesses +20
Navigating Container Security with AttackIQ’s Optimization Solutions 8 hours ago | securityboulevard.com
attackiq businesses challenge cloud security +19
CEO Discusses MDR Service With a Risk-Based Approach 9 hours ago | securityboulevard.com
aids apps artificial artificial intelligence +29
GitLab ‘Perfect 10’ Bug Gets a CISA Warning: PATCH NOW 9 hours ago | securityboulevard.com
agency analytics & intelligence api security bug +70
Our New “Days of Rage” Protest Activity and Considerations for Corporate Security 9 hours ago | securityboulevard.com
article attack college corporate +23

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Senior Security Engineer - Detection and Response

@ Fastly, Inc. | US (Remote)
View on infosec-jobs.com

Application Security Engineer

@ Solidigm | Zapopan, Mexico
View on infosec-jobs.com

Defensive Cyber Operations Engineer-Mid

@ ISYS Technologies | Aurora, CO, United States
View on infosec-jobs.com

Manager, Information Security GRC

@ OneTrust | Atlanta, Georgia
View on infosec-jobs.com

Senior Information Security Analyst | IAM

@ EBANX | Curitiba or São Paulo
View on infosec-jobs.com

Senior Information Security Engineer, Cloud Vulnerability Research

@ Google | New York City, USA; New York, USA
View on infosec-jobs.com
View more jobs