PT-2023-8447 · Pypi+8 · Pillow+8

Duarte Santos

·

Publicado

2023-12-10

·

Atualizado

2026-03-31

·

CVE-2023-50447

CVSS v4.0

9.3

Crítica

VetorAV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Name of the Vulnerable Software and Affected Versions Pillow versions prior to 10.2.0
Description The issue is related to the incorrect management of code generation in the eval() function of the ImageMath module in the Pillow library when processing the environment parameter. This can allow a remote attacker to execute arbitrary code. The vulnerability is different from previous issues and can expose Python projects to risk.
Recommendations For Pillow versions prior to 10.2.0, update to version 10.2.0 or later to resolve the issue. As a temporary workaround, consider disabling the eval() function in the ImageMath module until a patch is available. Restrict access to the environment parameter in the affected API endpoint to minimize the risk of exploitation.

Exploit

Correção

Code Injection

Eval Injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-94CWE-95

Identificadores relacionados

ALSA-2024:0893
ALSA-2024_0893
BDU:2024-00775
BIT-PILLOW-2023-50447
CESA-2024_0857
CESA-2024_0893
CVE-2023-50447
DLA-3724-1
DSA-5704-1
ELSA-2024-0857
ELSA-2024-0893
GHSA-3F63-HFP8-52JQ
MGASA-2024-0018
OESA-2024-1098
OPENSUSE-SU-2024:0125-1
OPENSUSE-SU-2024:13611-1
OPENSUSE-SU-2024_0205-1
RHSA-2024:0754
RHSA-2024:0857
RHSA-2024:0893
RHSA-2024:1058
RHSA-2024:1059
RHSA-2024:1060
RHSA-2024:3781
RHSA-2024_0857
RHSA-2024_0893
ROSA-SA-2024-2392
SUSE-SU-2024:0185-1
SUSE-SU-2024:0205-1
SUSE-SU-2024:0290-1
SUSE-SU-2024:0439-1
SUSE-SU-2024_0205-1
USN-6618-1
USN-8135-1

Produtos afetados

Almalinux
Astra Linux
Centos
Linuxmint
Pillow
Red Hat
Red Os
Suse
Ubuntu