A critical vulnerability in Exim software, which is used by 57% of all email servers worldwide, can enable attackers to run malicious code on impacted servers with administrative (root) privileges, the Exim team warned last Friday. The company has released a patch to address the issue.
The flaw affects servers running Exim version 4.92.1 or an older version, although it can only be exploited if the server’s configuration allows incoming TLS connections.
Read more: Millions of Exim servers vulnerable to root-granting exploit