CVE-2021-45845

CVE-2021-45845

EPSS 1.9%

The Path Sanity Check script of FreeCAD 0.19 is vulnerable to OS command injection, allowing an attacker to execute arbitrary commands via a crafted FCStd document.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/FreeCAD/FreeCAD/pull/5306 https://tracker.freecad.org/view.php?id=4810 https://www.debian.org/security/2022/dsa-5229