Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Package Hub 15 SP4 package jhead, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVE-2022-41751 — CVSS 7.8 (high): Jhead 3.06.0.1 allows attackers to execute arbitrary OS commands by placing them in a JPEG filename and then using the regeneration -rgt50…