CVE-2019-10149: exim: Remote command execution in deliver_message() function in /src/deliver.c

Severity: Critical

CVSS Score: 9.8

A flaw was found in Exim versions 4.87 to 4.91 (inclusive). Improper validation of recipient address in deliver_message() function in /src/deliver.c may lead to remote command execution.