Exposures › CVE-2020-7247

CVE-2020-7247

Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2022-03-25
Reference
⚡ RCE ⌖ exploited in the wild shame 65/100 rceexploited-in-wild

smtp_mailaddr in smtp_session.c in OpenSMTPD, as used in OpenBSD and other products, allows remote attackers to execute arbitrary commands as root via a crafted SMTP session.

Players implicated

Description

smtp_mailaddr in smtp_session.c in OpenSMTPD, as used in OpenBSD and other products, allows remote attackers to execute arbitrary commands as root via a crafted SMTP session.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.