THREAT OPS › CVEs › CVE-2020-7247
CVE-2020-7247 — OpenSMTPD Remote Code Execution Vulnerability
smtp_mailaddr in smtp_session.c in OpenSMTPD, as used in OpenBSD and other products, allows remote attackers to execute arbitrary commands as root via a crafted SMTP session.
Vulnerability details
- Affected productsOpenSMTPD
- KEV remediation due2022-04-15