Improper sanitization in the invocation of ODA File Converter from FreeCAD 0.19 allows an malicious user to inject OS commands via a crafted filename.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
freecadweb freecad 0.19 |
||
debian debian linux 9.0 |
||
debian debian linux 10.0 |
||
debian debian linux 11.0 |