CVE-2023-51889

Опубликовано: 24 янв. 2024

Источник: debian

EPSS Низкий

Описание

Stack Overflow vulnerability in the validate() function in Mathtex v.1.05 and before allows a remote attacker to execute arbitrary code via crafted string in the application URL.

Пакеты

Пакет	Статус	Релиз	Тип
mathtex	removed		package
mathtex	no-dsa	bookworm	package
mathtex	no-dsa	bullseye	package
mathtex	postponed	buster	package

Примечания

https://blog.yulun.ac.cn/posts/2023/fuzzing-mathtex/

EPSS

Процентиль: 86%

0.02948

Низкий

Связанные уязвимости

CVE-2023-51889

CVSS3: 9.8

ubuntu

около 2 лет назад

Stack Overflow vulnerability in the validate() function in Mathtex v.1.05 and before allows a remote attacker to execute arbitrary code via crafted string in the application URL.

CVE-2023-51889

CVSS3: 9.8

nvd

около 2 лет назад

Stack Overflow vulnerability in the validate() function in Mathtex v.1.05 and before allows a remote attacker to execute arbitrary code via crafted string in the application URL.

GHSA-57w7-wm2r-3f6f

CVSS3: 9.8

github

около 2 лет назад

Stack Overflow vulnerability in the validate() function in Mathtex v.1.05 and before allows a remote attacker to execute arbitrary code via crafted string in the application URL.

EPSS

Процентиль: 86%

0.02948

Низкий