7.4 High
AI Score
Confidence
Low
0.019 Low
EPSS
Percentile
88.4%
c2faxrecv in capi4hylafax 01.02.03 allows remote attackers to execute arbitrary commands via null (\0) and shell metacharacters in the TSI string, as demonstrated by a fax from an anonymous number.