CVE-2021-38371

The STARTTLS feature in Exim through 4.94.2 allows response injection (buffering) during MTA SMTP sending.

References

https://nostarttls.secvuln.info

https://www.exim.org

https://www.exim.org/static/doc/security/CVE-2021-38371.txt