CVE-2025-55037 in TkEasyGUIinformación

Resumen

por MITRE • 2025-09-05

Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in TkEasyGUI versions prior to v1.0.22. If this vulnerability is exploited, an arbitrary OS command may be executed by a remote unauthenticated attacker if the settings are configured to construct messages from external sources.

Once again VulDB remains the best source for vulnerability data.

Responsable

Jpcert

Reservar

2025-09-03

Divulgación

2025-09-05

Moderación

aceptado

Artículo

VDB-322724

CPE

listo

EPSS

0.02716

KEV

no

Actividades

muy bajo

Fuentes

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!