An issue in tiagorlampert CHAOS before 1b451cf62582295b7225caf5a7b506f0bad56f6b and 24c9e109b5be34df7b2bce8368eae669c481ed5e allows a remote attacker to execute arbitrary code via the unsafe concatenation of the `filename` argument into the `buildStr` string without any sanitization or filtering.
CVSS
No CVSS.
References
Configurations
No configuration.
History
07 May 2024, 20:07
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
07 May 2024, 14:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-05-07 14:15
Updated : 2024-05-07 20:07
NVD link : CVE-2024-33434
Mitre link : CVE-2024-33434
CVE.ORG link : CVE-2024-33434
JSON object : View
Products Affected
No product.
CWE
No CWE.