Freecadweb: >> Freecad >> 0.19 Security Vulnerabilities
The Path Sanity Check script of FreeCAD 0.19 is vulnerable to OS command injection, allowing an attacker to execute arbitrary commands via a crafted FCStd document.
CVSS Score
7.8
EPSS Score
0.012
Published
2022-01-25
Improper sanitization in the invocation of ODA File Converter from FreeCAD 0.19 allows an attacker to inject OS commands via a crafted filename.
CVSS Score
7.8
EPSS Score
0.004
Published
2022-01-25