← CVECheck
HomeVulnerabilities

CVE-2001-1022 — HIGH severity vulnerability (Format string vulnerability in pic utility in groff 1.16.1 a)

Format string vulnerability in pic utility in groff 1.16.1 and other versions, and jgroff before 1.15, allows remote attackers to bypass the -S option and execute arbitrary commands via format string specifiers in the plot command.

CVE IDCVE-2001-1022
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2001-07-26
Last modified2026-04-16
DescriptionFormat string vulnerability in pic utility in groff 1.16.1 and other versions, and jgroff before 1.15, allows remote attackers to bypass the -S option and execute arbitrary commands via format string specifiers in the plot command.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →