CVE-2020-7247

OpenSMTPD Remote Code Execution Vulnerability

Beschreibung

smtp_mailaddr in smtp_session.c in OpenSMTPD, as used in OpenBSD and other products, allows remote attackers to execute arbitrary commands as root via a crafted SMTP session.

Schweregrad: CRITICAL

CVSS-Score: 9.8

Hersteller: OpenBSD

Produkt: OpenSMTPD