Количество 2
Количество 2
CVE-2025-55037
Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in TkEasyGUI versions prior to v1.0.22. If this vulnerability is exploited, an arbitrary OS command may be executed by a remote unauthenticated attacker if the settings are configured to construct messages from external sources.
GHSA-hfrj-3w3g-jv32
TkEasyGUI Vulnerable to OS Command Injection
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-55037 Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in TkEasyGUI versions prior to v1.0.22. If this vulnerability is exploited, an arbitrary OS command may be executed by a remote unauthenticated attacker if the settings are configured to construct messages from external sources. | CVSS3: 9.8 | 0% Низкий | 5 месяцев назад |
| GHSA-hfrj-3w3g-jv32 TkEasyGUI Vulnerable to OS Command Injection | CVSS3: 9.8 | 0% Низкий | 5 месяцев назад |
Уязвимостей на страницу