Stack-based buffer overflow in the extractTree function in unADF allows remote attackers to execute arbitrary code via a long pathname.
9.8CVSS
9.7AI Score
0.066EPSS
The extractTree function in unADF allows remote attackers to execute arbitrary code via shell metacharacters in a directory name in an adf file.
8.8CVSS
9.3AI Score
0.033EPSS