Описание
Eval injection vulnerability in bvh_import.py in Blender 2.36 allows attackers to execute arbitrary Python code via a hierarchy element in a .bvh file, which is supplied to an eval function call.
Ссылки
- ExploitMailing ListThird Party Advisory
- Broken Link
- Third Party Advisory
- Broken LinkThird Party AdvisoryVDB Entry
- ExploitMailing ListThird Party Advisory
- Broken Link
- Third Party Advisory
- Broken LinkThird Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:blender:blender:2.36:*:*:*:*:*:*:*
Конфигурация 2
cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:*
EPSS
Процентиль: 89%
0.04914
Низкий
7.3 High
CVSS3
7.5 High
CVSS2
Дефекты
CWE-94
CWE-94
Связанные уязвимости
CVSS3: 7.3
ubuntu
почти 20 лет назад
Eval injection vulnerability in bvh_import.py in Blender 2.36 allows attackers to execute arbitrary Python code via a hierarchy element in a .bvh file, which is supplied to an eval function call.
CVSS3: 7.3
debian
почти 20 лет назад
Eval injection vulnerability in bvh_import.py in Blender 2.36 allows a ...
CVSS3: 7.3
github
больше 3 лет назад
Eval injection vulnerability in bvh_import.py in Blender 2.36 allows attackers to execute arbitrary Python code via a hierarchy element in a .bvh file, which is supplied to an eval function call.
EPSS
Процентиль: 89%
0.04914
Низкий
7.3 High
CVSS3
7.5 High
CVSS2
Дефекты
CWE-94
CWE-94