Researchers from Qualys released a study that found 21 unique vulnerabilities in the Exim mail server. Some of these can be linked together to obtain full remote unauthenticated code execution and gain root privileges.
In a blog post, the Qualys Research Team said that the vulnerabilities potentially affect numerous organisations due to an estimated 60% of internet servers that run on Exim. Researchers also executed a Shodan search to find that nearly 4 million Exim servers are exposed to the internet.