Arbitrary File Read Vulnerability in Anki 24.04 via Latex Sanitization Bypass
CVE-2024-29073
5.3MEDIUM
What is CVE-2024-29073?
An vulnerability in the handling of Latex exists in Ankitects Anki 24.04. When Latex is sanitized to prevent unsafe commands, the verbatim package, which comes installed by default in many Latex distributions, has been overlooked. A specially crafted flashcard can lead to an arbitrary file read. An attacker can share a flashcard to trigger this vulnerability.
Affected Version(s)
Anki 24.04
References
EPSS Score
11% chance of being exploited in the next 30 days.
CVSS V3.1
Score:
5.3
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved
Credit
Discovered by Autumn Bee Skerritt of Cisco Duo Security and Jacob B.
