CVE-2024-40445

Name of the Vulnerable Software and Affected Versions forkosh Mime Tex versions prior to 1.77

Description A Directory Traversal vulnerability in forkosh Mime Tex allows an attacker to execute arbitrary code via a crafted file upload. This issue enables an attacker to potentially access and manipulate files outside the intended directory structure, leading to arbitrary code execution.

Recommendations For versions prior to 1.77, update to version 1.77 or later to resolve the issue. As a temporary workaround, consider restricting file upload capabilities to minimize the risk of exploitation. Avoid using the vulnerable file upload feature until the issue is resolved.