Loading
expand.c in Exim before 4.83 expands mathematical comparisons twice, which allows local users to gain privileges and execute arbitrary commands via a crafted lookup value.
Use CWE-189, Exim vendor hub and Exim product page to widen CVE-2014-2972 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2023-42117, CVE-2023-42116 and CVE-2023-42115 for nearby disclosures in the same product family.