Vulnerability Details CVE-2005-3302
Eval injection vulnerability in bvh_import.py in Blender 2.36 allows attackers to execute arbitrary Python code via a hierarchy element in a .bvh file, which is supplied to an eval function call.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.049
EPSS Ranking 89.1%
CVSS Severity
CVSS v3 Score 7.3
CVSS v2 Score 7.5
References
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=330895
- http://secunia.com/advisories/19754
- http://www.debian.org/security/2006/dsa-1039
- http://www.securityfocus.com/bid/17663
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=330895
- http://secunia.com/advisories/19754
- http://www.debian.org/security/2006/dsa-1039
- http://www.securityfocus.com/bid/17663
Products affected by CVE-2005-3302
-
cpe:2.3:a:blender:blender:2.36
-
cpe:2.3:o:debian:debian_linux:3.1