Security Advisory

CVE-2021-23437

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-09-03 16:10:10
Last updated 2024-09-16 20:47:41
Assigner snyk
State PUBLISHED

Description

The package pillow 5.2.0 and before 8.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the getrgb function.