26Mar
CVE-2024-29189 | Ansys pyansys-geometry up to 0.3.2/0.4.11 product_instance.py _start_program os command injection (GHSA-38jr-29fh-w9vm)
A vulnerability, which was classified as critical, was found in Ansys pyansys-geometry up to 0.3.2/0.4.11. Affected is the function_start_program
of the file src/ansys/geometry/core/connection/product_instance.py. The manipulation leads to os command injection.
This vulnerability is traded as CVE-2024-29189. An attack has to be approached locally. There is no exploit available.
It is recommended to upgrade the affected component.