Typora Local File Disclosure
CVE-2023-2316

7.4HIGH

Key Information:

Vendor: Typora
Status: Typora
Vendor: CVE Published:; 19 August 2023

What is CVE-2023-2316?

An issue in Typora prior to version 1.6.7 on Windows and Linux creates a risk where crafted markdown files can enable unauthorized access to local files. By exploiting improper path handling, an attacker may exfiltrate files to remote servers through the 'typora://app/' scheme. This situation arises when a user unexpectedly opens a harmful markdown file or inadvertently pastes content from a malicious webpage into Typora, making it essential for users to be cautious about the sources of their markdown files.

Affected Version(s)

Typora Windows 0 < 1.6.7

References

https://support.typora.io/What's-New-1.6/

release-notes

https://starlabs.sg/advisories/23/23-2316/

third-party-advisory

CVSS V3.1

Score:

7.4

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 19, 2023
Vulnerability Reserved
Apr 27, 2023

Credit

Li Jiantao (@CurseRed) of STAR Labs SG Pte. Ltd. (@starlabs_sg)

JSON