---

CVE-2022-24303 - log back

CVE-2022-24303 created at 06 Apr 2022 20:56:59
Severity	+ Unknown
Remote	+ Unknown
Type	+ Unknown
Description	+ Pillow before 9.0.1 allows attackers to delete files because spaces in temporary pathnames are mishandled.
References	+ https://github.com/python-pillow/Pillow/pull/3450 + https://pillow.readthedocs.io/en/stable/releasenotes/9.0.1.html#security + https://nvd.nist.gov/vuln/detail/CVE-2022-24303
Notes