Arbitrary File Read Vulnerability in Anki 24.04 via Latex Sanitization Bypass
CVE-2024-29073

6.5MEDIUM

Key Information:

Vendor: Ankitects
Status: Anki
Vendor: CVE Published:; 22 July 2024

What is CVE-2024-29073?

An vulnerability in the handling of Latex exists in Ankitects Anki 24.04. When Latex is sanitized to prevent unsafe commands, the verbatim package, which comes installed by default in many Latex distributions, has been overlooked. A specially crafted flashcard can lead to an arbitrary file read. An attacker can share a flashcard to trigger this vulnerability.

Affected Version(s)

Anki 24.04

References

https://talosintelligence.com/vulnerability_reports/TALOS...

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 22, 2024
Vulnerability Reserved
May 6, 2024

Credit

Discovered by Autumn Bee Skerritt of Cisco Duo Security and Jacob B.