High
CVSS 7.3
Overview
Eval injection vulnerability in bvh_import.py in Blender 2.36 allows attackers to execute arbitrary Python code via a hierarchy element in a .bvh file, which is supplied to an eval function call.
CVE-2005-3302
Eval injection vulnerability in bvh_import.py in Blender 2.36 allows attackers t...
Risk analysis
This vulnerability is rated 🟠 HIGH.
- CVSS: 7.3 (HIGH)
- Detected tags: none (tag impact: LOW)
Recommended actions:
- Prioritize remediation based on business criticality and exposure.
- Limit exposure and increase monitoring until fixed.