A vulnerability was found in less up to 653. It has been classified as critical. This affects an unknown part of the file filename.c of the component File Name Handler. The manipulation of the argument LESSOPEN leads to os command injection.
This vulnerability is uniquely identified as CVE-2024-32487. An attack has to be approached locally. There is no exploit available.
It is recommended to apply a patch to fix this issue.