20Oca
CVE-2023-50447 | Pillow up to 10.1.0 PIL.ImageMath.eval environment Privilege Escalation
A vulnerability classified as problematic was found in Pillow up to 10.1.0. Affected by this vulnerability is the functionPIL.ImageMath.eval
. The manipulation of the argument environment leads to Privilege Escalation.
This vulnerability is known as CVE-2023-50447. Access to the local network is required for this attack. There is no exploit available.
It is recommended to upgrade the affected component.