CVE

CVE-2021-23437

CVE-2021-23437

The package pillow from 0 and before 8.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the getrgb function.

Source: CVE-2021-23437

Exit mobile version