Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Benedikt_Weissl
Advisor

IPS Protection for 21Nails Exim Vulnerability


Hey Guys,

there are currently some critical vulnerabilities for the exim mail server out there:

https://blog.qualys.com/vulnerabilities-research/2021/05/04/21nails-multiple-vulnerabilities-in-exim...

Does anybody now the eta for an IPS protection covering these vulnerabilities?

cheers,

0 Kudos
1 Reply
_Val_
Admin
Admin

I have checked the article you are referring to, and the mentioned CVEs, such as CVE-2020-28017 and others, are still listed by NDV as "undergoing analysis". They are also not even rated yet, which indicates they are reported quite recently, probably within the last day or two, and not much of information is actually published for them yet.

Without details about the vulnerabilities: POC exploits and other tech details, it is virtually impossible to provide protection.  

Mind, this is not an official answer. Best is to open a TAC request and mention there all CVEs you need IPS protection for, asking for ETA on those.