5 matches found
CVE-2024-29073
An vulnerability in the handling of Latex exists in Ankitects Anki 24.04. When Latex is sanitized to prevent unsafe commands, the verbatim package, which comes installed by default in many Latex distributions, has been overlooked. A specially crafted flashcard can lead to an arbitrary file read. ...
Linux Distros Unpatched Vulnerability : CVE-2024-29073
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An vulnerability in the handling of Latex exists in Ankitects Anki 24.04. When Latex is sanitized to prevent unsafe commands, the verbatim package, which comes...
CVE-2024-29073
creationtimestamp| type| source ---|---|--- 2024-07-22 17:50:05+00:00| seen| https://t.me/cvedetector/1460...
CVE-2024-29073
An vulnerability in the handling of Latex exists in Ankitects Anki 24.04. When Latex is sanitized to prevent unsafe commands, the verbatim package, which comes installed by default in many Latex distributions, has been overlooked. A specially crafted flashcard can lead to an arbitrary file read. ...
CVE-2024-29073
Anki (Ankitects) 24.04 is affected by CVE-2024-29073 due to incomplete sanitization of LaTeX: the verbatim package is not properly handled, enabling a specially crafted flashcard to read arbitrary files. The issue is triggered by sharing a flashcard; no fix/version remediation is provided in the ...