Name of the Vulnerable Software and Affected Versions http.server.CGIHTTPRequestHandler (affected versions not specified)

Description The issue is related to an error in separating the path and filename of the CGI script to run, allowing the execution of arbitrary executables in the directory under which the server was started. This is specifically related to the http.server.CGIHTTPRequestHandler.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.