PT-2025-11079 · Xpixelgroup · Xpixelgroup Basicsr
Aydinnyunus
·
Published
2025-03-12
·
Updated
2025-03-12
·
CVE-2024-27763
CVSS v3.1
5.3
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L |
Name of the Vulnerable Software and Affected Versions:
XPixelGroup BasicSR versions 1.4.2 and earlier
Description:
The issue might locally allow code execution in specific situations where
scontrol show hostname is executed with a crafted SLURM NODELIST environment variable.Recommendations:
For XPixelGroup BasicSR versions 1.4.2 and earlier, consider restricting the execution of
scontrol show hostname to prevent potential code execution in the presence of a crafted SLURM NODELIST environment variable.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Xpixelgroup Basicsr