Pillow취약점

Python : PIL.ImageMath.eval() | CVE-2022-22817

CVE - CVE-2022-22817 20220107 Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE. cve.mitre.org 최신 취약점인 CVE-2022-22817 을 분석해보려고 합니다 ! PIL.ImageMath.eval()에서 임의 표현식을 실행할 수 있다는 취약점입니다. 1. 이론 공부 1.1. PIL이란 Python Im..