CVE-2021-29475

Name of the Vulnerable Software and Affected Versions: HedgeDoc versions prior to 1.5.0

Description: The issue affects HedgeDoc, an open-source collaborative markdown editor, where an attacker can receive arbitrary files from the file system when exporting a note to PDF. This exploit requires the attacker's ability to modify a note and affects all instances with PDF export enabled. The impact is significant, as the attacker can read the HedgeDoc config.json file and other files on the filesystem, potentially accessing sensitive information, database credentials, and OAuth secrets.

Recommendations: For versions prior to 1.5.0, upgrade to version 1.5.0 to resolve the issue. As a temporary workaround, consider starting the HedgeDoc instance with CMD ALLOW PDF EXPORT=false or set "allowPDFExport": false in config.json to mitigate this issue.