---

CVE-2020-28023 - log back

CVE-2020-28023 edited at 06 May 2021 17:28:33
Description	- An out-of-bounds read in smtp_setup_msg() has been found in Exim before version 4.94.2. + Exim 4 before 4.94.2 allows out-of-bounds read. smtp_setup_msg may disclose sensitive information from process memory to an unauthenticated SMTP client.

CVE-2020-28023 edited at 04 May 2021 14:48:54
References	https://www.openwall.com/lists/oss-security/2021/05/04/6 https://www.qualys.com/2021/05/04/21nails/21nails.txt + https://git.exim.org/exim.git/commitdiff/611143d73ce446cb34c44e3dac2c7f321acaa225
Notes

CVE-2020-28023 edited at 04 May 2021 14:04:50
Severity	- Unknown + Medium
Remote	- Unknown + Remote
Type	- Unknown + Information disclosure
Description	+ An out-of-bounds read in smtp_setup_msg() has been found in Exim before version 4.94.2.
References	+ https://www.openwall.com/lists/oss-security/2021/05/04/6 + https://www.qualys.com/2021/05/04/21nails/21nails.txt

CVE-2020-28023 created at 04 May 2021 13:46:53