A critical vulnerability was located in Exim versions prior to 4.92.2 (
CVE-2019-15846). The KACE Systems Management Appliance (SMA) uses Exim 4.90_1 in version 9.0.270, Exim 4.91_2 in 9.1.317, and Exim 4.92_3 in version 10.0.290. As such, the SMA is affected by this vulnerability.