CVE-2020-7247: OpenSMTPD Remote Code Execution Vulnerability.

OpenSMTPD Remote Code Execution Vulnerability. smtp_mailaddr in smtp_session.c in OpenSMTPD, as used in OpenBSD and other products, allows remote attackers to execute arbitrary commands as root via a crafted SMTP session.

• CISA KEV-listed (remediation due 2022-04-15)
• EPSS 94.1% (99.9% percentile)

Browse the CVE database

Read the full analysis on IntelFusions