How severe is CVE-2024-40445?

CVE-2024-40445 has a CVSS v3 score of 7.3 (HIGH).

CVE-2024-40445

Name: mimetex
Author: ctan

7.3HIGH

A directory traversal vulnerability in forkosh Mime TeX before version 1.77 allows attackers on Windows systems to read or append arbitrary files by manipulating crafted input paths.

게시됨: 4/22/2025업데이트됨: 6/23/2025

설명

A directory traversal vulnerability in forkosh Mime TeX before version 1.77 allows attackers on Windows systems to read or append arbitrary files by manipulating crafted input paths.

AI 분석AI 기반

영향받는 제품

ctanmimetex

참조

https://github.com/Oefenweb/mimetex/blob/master/mimetex.c#L12414-L12423
Product
https://github.com/TaiYou-TW/CVE-2024-40445_CVE-2024-40446/
MitigationThird Party Advisory
https://youtu.be/OII16TteaJw
Broken Link
https://youtu.be/W2KPHFNfgrg
Broken Link