CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

540 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в emacs

In Emacs versions before 29.3, LaTeX preview is enabled by default for e-mail attachments...

2.8CVSS6.4AI score0.00017EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в texlive-bin

In axohelp.c, before version 1.3 in axohelp, and in axodraw2 before version 2.1.1b, sprintf is handled incorrectly. This issue is present in distributions like TeXLive and other collections...

9.8CVSS7.3AI score0.00198EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•1 views

Astra Linux - уязвимость в texlive-bin

LuaTeX before 1.17.0 allows a document compiled with the default settings to make arbitrary network requests. This occurs because full access to the socket library is permitted by default, as stated in the documentation. This also affects TeX Live before 2023 r66984 and MiKTeX before 23.5...

5.5CVSS6AI score0.00064EPSS

Exploits1References2

AstraLinux•added 2026/05/03 11:59 p.m.•5 views

Astra Linux - уязвимость в texlive-bin

LuaTeX prior to version 1.17.0 allowed the execution of arbitrary shell commands when compiling a TeX file obtained from an untrusted source. This occurs because the luatex-core.lua file allows access to the io.popen function. This issue also affects TeX Live prior to version 2023 r66984 and MiKT...

8.8CVSS7.3AI score0.00253EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux - уязвимость в thunderbird

A missing check related to text units could have led to a use-after-free condition and potentially exploitable crashes.Note: This advisory was added on December 13th, 2022 after we better understood the impact of the issue. The fix was included in the original release of Firefox 105. This...

6.5CVSS7AI score0.0021EPSS

Exploits0References2

OSV•added 2026/04/25 5:51 a.m.•1 views

OESA-2026-2113 texlive-base security update

The TeX Live software distribution offers a complete TeX system for a variety of Unix, Macintosh, Windows and other platforms. It encompasses programs for editing, typesetting, previewing and printing of TeX documents in many different languages, and a large collection of TeX macros and font...

8.1CVSS5.7AI score0.00325EPSS

Exploits0References2

OSV•added 2026/04/25 5:51 a.m.•1 views

OESA-2026-2112 texlive-base security update

8.1CVSS5.7AI score0.00325EPSS

Exploits0References2

OSV•added 2026/04/25 5:51 a.m.•1 views

OESA-2026-2111 texlive-base security update

8.1CVSS5.7AI score0.00325EPSS

Exploits0References2

OSV•added 2026/04/25 5:51 a.m.•2 views

OESA-2026-2110 texlive-base security update

8.1CVSS5.7AI score0.00325EPSS

Exploits0References2

OSV•added 2026/03/02 8:50 a.m.•2 views

BIT-MOODLE-2026-26047 Moodle: moodle: uncontrolled resource consumption in tex formula editor leading to denial of service

A denial-of-service vulnerability was identified in Moodle’s TeX formula editor. When rendering TeX content using mimetex, insufficient execution time limits could allow specially crafted formulas to consume excessive server resources. An authenticated user could abuse this behavior to degrade...

6.5CVSS6.1AI score0.00094EPSS

Exploits0References3

OSV•added 2026/03/02 8:50 a.m.•2 views

BIT-MOODLE-2026-26046 Moodle: moodle: improper input sanitization in tex filter administration setting

A vulnerability was found in a Moodle TeX filter administrative setting where insufficient sanitization of configuration input could allow command injection. On sites where the TeX filter is enabled and ImageMagick is installed, a maliciously crafted setting value entered by an administrator coul...

7.2CVSS5.8AI score0.00195EPSS

Exploits0References3

Packet Storm•added 2026/02/25 12:0 a.m.•82 views

📄 Moodle TeX Formula Rendering Denial of Service

A denial of service vulnerability was identified in the TeX formula rendering component of Moodle. The issue occurs when rendering TeX content using the mimetex engine without enforcing sufficient execution time or resource limitations. By submitting specially crafted TeX formulas designed to...

5.8AI score

Exploits0

Tenable Nessus•added 2026/02/24 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2026-26047

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A denial-of-service vulnerability was identified in Moodle's TeX formula editor. When rendering TeX content using mimetex, insufficient execution time limits...

6.5CVSS6AI score0.00094EPSS

Exploits0References2

Tenable Nessus•added 2026/02/24 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2026-26046

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in a Moodle TeX filter administrative setting where insufficient sanitization of configuration input could allow command injection. On...

7.2CVSS5.8AI score0.00195EPSS

Exploits0References2

Github Security Blog•added 2026/02/21 6:30 a.m.•2 views

Moodle TeX formula editor is vulnerable to DoS through lack of execution time limits

A Denial of Service vulnerability was identified in Moodle’s TeX formula editor. When rendering TeX content using mimetex, insufficient execution time limits could allow specially crafted formulas to consume excessive server resources. An authenticated user could abuse this behavior to degrade...

6.5CVSS5.7AI score0.00094EPSS

Exploits0References6Affected Software1

OSV•added 2026/02/21 6:30 a.m.•2 views

GHSA-CG8J-5CR2-568Q Moodle TeX formula editor is vulnerable to DoS through lack of execution time limits

6.5CVSS5.8AI score0.00094EPSS

Exploits0References6