Kujirahand Tkeasygui vulnerabilities
2 known vulnerabilities affecting kujirahand/tkeasygui.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2025-55037P2CRITICALCVSS 9.3vversions prior to v1.0.222025-09-05
CVE-2025-55037 [CRITICAL] CWE-78 CVE-2025-55037: Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exi
Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in TkEasyGUI versions prior to v1.0.22. If this vulnerability is exploited, an arbitrary OS command may be executed by a remote unauthenticated attacker if the settings are configured to construct messages from external sources.
ghsanvdosv
CVE-2025-55671P3HIGHCVSS 8.5vversions prior to v1.0.222025-09-05
CVE-2025-55671 [HIGH] CWE-427 CVE-2025-55671: Uncontrolled search path element issue exists in TkEasyGUI versions prior to v1.0.22. If this vulner
Uncontrolled search path element issue exists in TkEasyGUI versions prior to v1.0.22. If this vulnerability is exploited, arbitrary code may be executed with the privilege of running the program.
ghsanvdosv