CVE-2022-24303: python-pillow: temporary directory with a space character allows removal of unrelated file after im.show() and related actions

Severity: Critical

CVSS Score: 9.1

Pillow before 9.0.1 allows attackers to delete files because spaces in temporary pathnames are mishandled.