Описание
The Python SVG import plugin (diasvg_import.py) for DIA 0.94 and earlier allows user-assisted attackers to execute arbitrary commands via a crafted SVG file.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Exploit
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 0.94 (включая)
Одно из
cpe:2.3:a:dia:dia:*:*:*:*:*:*:*:*
cpe:2.3:a:dia:dia:0.91:*:*:*:*:*:*:*
cpe:2.3:a:dia:dia:0.92.2:*:*:*:*:*:*:*
cpe:2.3:a:dia:dia:0.93:*:*:*:*:*:*:*
EPSS
Процентиль: 85%
0.02533
Низкий
5.1 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
ubuntu
почти 20 лет назад
The Python SVG import plugin (diasvg_import.py) for DIA 0.94 and earlier allows user-assisted attackers to execute arbitrary commands via a crafted SVG file.
debian
почти 20 лет назад
The Python SVG import plugin (diasvg_import.py) for DIA 0.94 and earli ...
github
больше 3 лет назад
The Python SVG import plugin (diasvg_import.py) for DIA 0.94 and earlier allows user-assisted attackers to execute arbitrary commands via a crafted SVG file.
EPSS
Процентиль: 85%
0.02533
Низкий
5.1 Medium
CVSS2
Дефекты
NVD-CWE-Other