CVE-2021-27216
MEDIUMExim < 4.94.2 - Unauthenticated Arbitrary File Deletion via delete_pid_file Race Condition
Title source: llmDescription
Exim 4 before 4.94.2 has Execution with Unnecessary Privileges. By leveraging a delete_pid_file race condition, a local user can delete arbitrary files as root. This involves the -oP and -oPX options.
References (1)
Core 1
Core References
Exploit, Vendor Advisory x_refsource_misc
https://www.exim.org/static/doc/security/CVE-2020-qualys/CVE-2020-28007-LFDIR.txt
Scores
CVSS v3
6.3
EPSS
0.0098
EPSS Percentile
57.8%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H
Details
CWE
CWE-362
Status
published
Products (1)
exim/exim
< 4.94.2
Published
May 06, 2021
Tracked Since
Feb 18, 2026