CVE-2019-12921

Published March 18th, 2020

View on NVD ↗

CVSS v3

6.5

MEDIUM

CVSS v2

4.3

MEDIUM

Affected

PROJECT

Description

In GraphicsMagick before 1.3.32, the text filename component allows remote attackers to read arbitrary files via a crafted image because of TranslateTextEx for SVG.

d0ge/data-processing

Set of exploits for data processing open source libraries

GitHub