Pillow@2.3.0 Security Vulnerabilities and Issues — Pillow@2.3.0 CVE List

Lucene search

PythonPillow2.3.0

2 matches found

CVE•added 2014/08/25 2:55 p.m.•83 views

CVE-2014-3589

PIL/IcnsImagePlugin.py in Python Imaging Library (PIL) and Pillow before 2.3.2 and 2.5.x before 2.5.2 allows remote attackers to cause a denial of service via a crafted block size.

5CVSS6.4AI score0.01611EPSS

CVE•added 2014/04/27 8:55 p.m.•64 views

CVE-2014-3007

Python Image Library (PIL) 1.1.7 and earlier and Pillow 2.3 might allow remote attackers to execute arbitrary commands via shell metacharacters in unspecified vectors related to CVE-2014-1932, possibly JpegImagePlugin.py.

10CVSS7.8AI score0.01846EPSS