Improper sanitization in the invocation of ODA File Converter from FreeCAD 0.19 allows an attacker to inject OS commands via a crafted filename.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-01-25T12:42:03
Updated: 2024-08-04T04:54:31.042Z
Reserved: 2021-12-27T00:00:00
Link: CVE-2021-45844
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-01-25T13:15:07.997
Modified: 2022-10-27T19:29:43.460
Link: CVE-2021-45844
Redhat
No data.