Today > | 1 Medium vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-27629

June 28, 2024, 7:15 p.m.

Product(s) Impacted

dc2niix

  • before v.1.0.20240202

Description

An issue in dc2niix before v.1.0.20240202 allows a local attacker to execute arbitrary code via the generated file name is not properly escaped and injected into a system call when certain types of compression are used.

Weaknesses

Date

Published: June 28, 2024, 7:15 p.m.

Last Modified: June 28, 2024, 7:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

References

https://github.com/ cve@mitre.org