Textract
1 CVEs
product
Monthly
textract before 1.5.0 allows OS Command Injection attacks via a filename in a call to the process function. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
Command Injection
Textract
NVD
CVSS 3.0
7.8
EPSS
0.8%
EPSS 1%
CVSS 7.8
HIGH
POC
This Week
textract before 1.5.0 allows OS Command Injection attacks via a filename in a call to the process function. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
Command Injection
Textract
NVD