Lucene search
+L

6 matches found

astralinux
astralinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in Gegl

The loadcache function in GEGL before version 0.4.34 allows shell expansion when a pathname in a constructed command line is not escaped or filtered. This issue arises due to the use of the system library function for executing the ImageMagick convert fallback in magick-load. NOTE: GEGL versions...

7.8CVSS7.1AI score0.01439EPSS
Exploits0References2
redhat
redhat
added 2022/01/19 11:8 a.m.6 views

gegl: shell expansion via a crafted pathname

Due to the use of the system command in the Magick-Load op used by gegl an attacker is able to craft a command line path that is able to lead to the execution of arbitrary shell commands that impacts availability, confidentiality and integrity...

7.8CVSS6.1AI score0.01439EPSS
Exploits0References4
redhat
redhat
added 2022/01/19 10:5 a.m.5 views

gegl: shell expansion via a crafted pathname

Due to the use of the system command in the Magick-Load op used by gegl an attacker is able to craft a command line path that is able to lead to the execution of arbitrary shell commands that impacts availability, confidentiality and integrity...

7.8CVSS6.1AI score0.01439EPSS
Exploits0References4
redhat
redhat
added 2022/01/19 10:4 a.m.6 views

gegl: shell expansion via a crafted pathname

Due to the use of the system command in the Magick-Load op used by gegl an attacker is able to craft a command line path that is able to lead to the execution of arbitrary shell commands that impacts availability, confidentiality and integrity...

7.8CVSS6.1AI score0.01439EPSS
Exploits0References4
redhatcve
redhatcve
added 2021/12/23 9:12 p.m.39 views

CVE-2021-45463

Due to the use of the system command in the Magick-Load op used by gegl an attacker is able to craft a command line path that is able to lead to the execution of arbitrary shell commands that impacts availability, confidentiality and integrity...

7.8CVSS4.2AI score0.01439EPSS
Exploits0References3
cvelist
cvelist
added 2021/12/23 6:0 a.m.41 views

CVE-2021-45463

loadcache in GEGL before 0.4.34 allows shell expansion when a pathname in a constructed command line is not escaped or filtered. This is caused by use of the system library function for execution of the ImageMagick convert fallback in magick-load. NOTE: GEGL releases before 0.4.34 are used in GIM...

7.8AI score0.01439EPSS
Exploits0References7
Rows per page
Query Builder