CVE-2020-28018

CRITICAL

Exim < 4.94.2 - Use After Free

Title source: rule

Description

Exim 4 before 4.94.2 allows Use After Free in smtp_reset in certain situations that may be common for builds with OpenSSL.

Exploits (5)

github WORKING POC 690 stars

by lockedbyte · cpoc

https://github.com/lockedbyte/CVE-Exploits/tree/master/CVE-2020-28018

View Code ZIP pw:eip

github 34 stars

by DarkFunct · cpoc

https://github.com/DarkFunct/CVE_Exploits/tree/main/CVE-2020-28018

View on github

nomisec SCANNER 7 stars

by dorkerdevil · poc

https://github.com/dorkerdevil/CVE-2020-28018

View Code ZIP pw:eip

nomisec WRITEUP 2 stars

by zr0tt · poc

https://github.com/zr0tt/CVE-2020-28018

View Code ZIP pw:eip

inthewild

poc

https://github.com/lmol/cve-2020-28018

View on inthewild

References (8)

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2021/05/11/14

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2021/05/11/15

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2021/05/11/17

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2021/05/11/5

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2021/05/11/6

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2021/05/12/2

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2021/05/12/3

[Vendor Advisory] https://www.exim.org/static/doc/security/CVE-2020-qualys/CVE-2020-28018-OCORK.txt

Scores

CVSS v3 9.8

EPSS 0.6591

EPSS Percentile 98.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-416

Status published

Products (1)

exim/exim 4.90 - 4.94.2

Published May 06, 2021

Tracked Since Feb 18, 2026