CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Python: >> Pillow >> 10.1.0 Security Vulnerabilities

CVE-2023-50447

Pillow through 10.1.0 allows PIL.ImageMath.eval Arbitrary Code Execution via the environment parameter, a different vulnerability than CVE-2022-22817 (which was about the expression parameter).

CVSS Score

8.1

EPSS Score

0.006

Published

2024-01-19

Page 1

Vulnerabilities

Vulnerable Software

Python: >> Pillow >> 10.1.0 Security Vulnerabilities

Products

Pricing

Contact Us