Vulnerabilities > Kiwi Project
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2017-12-14 | CVE-2017-17532 | Injection vulnerability in Kiwi Project Kiwi 1.9.22 examples/framework/news/news3.py in Kiwi 1.9.22 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL. | 8.8 |