CVE-2019-10149

Exim Mail Transfer Agent (MTA) Improper Input Validation

Improper validation of recipient address in deliver_message() function in /src/deliver.c may lead to remote command execution. Vendor/Product: Exim Mail Transfer Agent (MTA). Added to CISA KEV 2022-01-10; required action: Apply updates per vendor instructions.

Category: Vulnerability, Known Exploited

Reference: NVD CVE-2019-10149