Seal Security raises $13M series A to secure open source code at scale. Read full press release.
.avif)
Pillow through 10.1.0 allows PIL.ImageMath.eval Arbitrary Code Execution via the environment parameter, a different vulnerability than CVE-2022-22817 (which was about the expression parameter).
Fix available through Seal Security. No upgrade required, protect your application instantly.
Fix without upgrading