CVE-2023-44464

pretix before 2023.7.2 allows Pillow to parse EPS files.

CVSS v3 : HIGH

Vector :

Exploitability : 1.8 / Impact : 5.9

References

Link	Resource
https://github.com/pretix/pretix/commit/8583bfb7d97263e9e923ad5d7f123ca1cadc8f2e	Patch
https://github.com/pretix/pretix/compare/v2023.7.1...v2023.7.2	Patch
https://github.com/pretix/pretix/tags	Release Notes
https://pretix.eu/about/de/blog/20230912-release-2023-7-2/	Vendor Advisory
https://pretix.eu/about/en/ticketing	Product

Configurations

Configuration 1 (hide)

History

No history.

Information

Published : 2023-09-29 05:15

Updated : 2023-10-12 02:47

NVD link : CVE-2023-44464

Mitre link : CVE-2023-44464

CVE.ORG link : CVE-2023-44464

JSON object : View

Products Affected

rami

CWE

NVD-CWE-noinfo