CVE-2018-7442: An issue was discovered in Leptonica through 1.75.3. The gplotMakeOutp ...

Severity: Critical

CVSS Score: 9.1

An issue was discovered in Leptonica through 1.75.3. The gplotMakeOutput function does not block '/' characters in the gplot rootname argument, potentially leading to path traversal and arbitrary file overwrite.