Giac Project: >> Giac Security Vulnerabilities
Input.cc in Bernard Parisse Giac 1.2.3.57 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL.
CVSS Score
8.8
EPSS Score
0.005
Published
2017-12-14