CVE-2015-0855: The _mediaLibraryPlayCb function in mainwindow.py in pitivi before 0.9 ...

Severity: Critical

CVSS Score: 9.8

The _mediaLibraryPlayCb function in mainwindow.py in pitivi before 0.95 allows attackers to execute arbitrary code via shell metacharacters in a file path.