PT-2023-8447 · Pypi+8 · Pillow+8

Duarte Santos

Published

2023-12-10

Updated

2026-03-31

CVE-2023-50447

CVSS v4.0

9.3

Critical

Vector

AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Name of the Vulnerable Software and Affected Versions Pillow versions prior to 10.2.0

Description The issue is related to the incorrect management of code generation in the eval() function of the ImageMath module in the Pillow library when processing the environment parameter. This can allow a remote attacker to execute arbitrary code. The vulnerability is different from previous issues and can expose Python projects to risk.

Recommendations For Pillow versions prior to 10.2.0, update to version 10.2.0 or later to resolve the issue. As a temporary workaround, consider disabling the eval() function in the ImageMath module until a patch is available. Restrict access to the environment parameter in the affected API endpoint to minimize the risk of exploitation.

Exploit

Fix

Code Injection

Eval Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94CWE-95

Related Identifiers

ALSA-2024:0893

ALSA-2024_0893

BDU:2024-00775

BIT-PILLOW-2023-50447

CESA-2024_0857

CESA-2024_0893

CVE-2023-50447

DLA-3724-1

DSA-5704-1

ELSA-2024-0857

ELSA-2024-0893

GHSA-3F63-HFP8-52JQ

MGASA-2024-0018

OESA-2024-1098

OPENSUSE-SU-2024:0125-1

OPENSUSE-SU-2024:13611-1

OPENSUSE-SU-2024_0205-1

RHSA-2024:0754

RHSA-2024:0857

RHSA-2024:0893

RHSA-2024:1058

RHSA-2024:1059

RHSA-2024:1060

RHSA-2024:3781

RHSA-2024_0857

RHSA-2024_0893

ROSA-SA-2024-2392

SUSE-SU-2024:0185-1

SUSE-SU-2024:0205-1

SUSE-SU-2024:0290-1

SUSE-SU-2024:0439-1

SUSE-SU-2024_0205-1

USN-6618-1

USN-8135-1

Affected Products

Almalinux

Astra Linux

Centos

Linuxmint

Pillow

Red Hat

Red Os

Suse

Ubuntu

PT-2023-8447 · Pypi+8 · Pillow+8

CVE-2023-50447

Weakness Enumeration

Related Identifiers

Affected Products

References · 86