Описание
In UHCRTFDoc, the filename parameter can be exploited to execute arbitrary code via command injection into the system() call in the ConvertToPDF function.
EPSS
Процентиль: 55%
0.0032
Низкий
Дефекты
CWE-94
Связанные уязвимости
github
5 месяцев назад
In UHCRTFDoc, the filename parameter can be exploited to execute arbitrary code via command injection into the system() call in the ConvertToPDF function.
EPSS
Процентиль: 55%
0.0032
Низкий
Дефекты
CWE-94