Title: CVE-2022-3008 | tinygltf up to 2.5.x Backtick wordexp os command injection (ID 368)
Description: A vulnerability classified as critical was found in tinygltf up to 2.5.x. This vulnerability affects the function wordexp of the component Backtick Handler. The manipulation leads to os command injection.
Link:
https://vuldb.com/?id.207856
Mon, 05 Sep 2022 12:54:04 +0200
--- The information is for informational purposes only.
* Origin: Read us with
http://winpoint.org/ (2:467/888.88)