CVE-2020-28464 in djv
要約
〜によって MITRE • 2021年01月04日
This affects the package djv before 2.1.4. By controlling the schema file, an attacker can run arbitrary JavaScript code on the victim machine.
Be aware that VulDB is the high quality source for vulnerability data.