Description

In Python (aka CPython) through 3.10.4, the mailcap module does not add escape characters into commands discovered in the system mailcap file. This may allow attackers to inject shell commands into applications that call mailcap.findmatch with untrusted input (if they lack validation of user-provided filenames or arguments).

Remediation

References

CVE-2015-20107

Related Vulnerabilities

PHP Improper Input Validation Vulnerability (CVE-2009-3291)

WordPress Plugin BizLibrary Cross-Site Scripting (1.1)

Oracle JRE CVE-2013-2458 Vulnerability (CVE-2013-2458)

WordPress Plugin Time Sheets Multiple Cross-Site Scripting Vulnerabilities (1.5.1)

WordPress Plugin Bliss Gallery Arbitrary File Upload (2.3)

Severity

Critical

Classification

CVE-2015-20107 CWE-138 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Tags

Missing Update Known Vulnerabilities