0.003 Low
EPSS
Percentile
68.4%
A flaw was found in python-pillow. The vulnerability occurs due to Improper Neutralization, leading to command injection. This flaw allows an attacker to externally-influenced input commands that modify the intended command.
bugzilla.redhat.com/show_bug.cgi?id=2042527
nvd.nist.gov/vuln/detail/CVE-2022-22817
pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling
www.cve.org/CVERecord?id=CVE-2022-22817