CVE-2012-4245

EPSS 1.1%

Published: 8/31/2012Modified: 1/5/2026

Description

The scriptfu network server in GIMP 2.6 does not require authentication, which allows remote attackers to execute arbitrary commands via the python-fu-eval command.

Affected packages (1)

Debian/gimpfrom 0

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2012-4245