CVE-2019-1010174

Name of the Vulnerable Software and Affected Versions: CImg Library versions prior to 2.3.4

Description: The issue allows for command injection, potentially leading to Remote Code Execution (RCE), due to a lack of string sanitization on user-controllable URLs when loading images using the load network() function.

Recommendations: For versions prior to 2.3.4, update to version 2.3.4 to resolve the issue. As a temporary workaround, consider restricting the use of the load network() function to minimize the risk of exploitation, or ensure that all URLs used for loading images are thoroughly sanitized and validated to prevent command injection.