CVE-2024-43426

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:C/I:N/A:N

Name of the Vulnerable Software and Affected Versions pdfTeX (affected versions not specified)

Description A flaw was found in pdfTeX, where insufficient sanitizing in the TeX notation filter resulted in an arbitrary file read risk on sites where pdfTeX is available, such as those with TeX Live installed.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-1287CWE-200

Related Identifiers

ALT-PU-2024-16385

ALT-PU-2024-16417

BDU:2025-10852

BIT-MOODLE-2024-43426

CVE-2024-43426

GHSA-VJMM-R9GG-425M

Affected Products

Alt Linux

Red Os

Pdftex

CVE-2024-43426

Weakness Enumeration

Related Identifiers

Affected Products

References · 20