Mathtex Security Vulnerabilities and Issues — Mathtex CVE List

Lucene search

CtanMathtex

6 matches found

CVE•added 2024/01/24 5:15 p.m.•36 views

CVE-2023-51887

Command Injection vulnerability in Mathtex v.1.05 and before allows a remote attacker to execute arbitrary code via crafted string in application URL.

9.8CVSS9.8AI score0.03179EPSS

CVE•added 2024/01/24 5:15 p.m.•30 views

CVE-2023-51886

Buffer Overflow vulnerability in the main() function in Mathtex 1.05 and before allows a remote attacker to cause a denial of service when using \convertpath.

7.5CVSS7.4AI score0.00672EPSS

CVE•added 2024/01/24 6:15 p.m.•30 views

CVE-2023-51889

Stack Overflow vulnerability in the validate() function in Mathtex v.1.05 and before allows a remote attacker to execute arbitrary code via crafted string in the application URL.

9.8CVSS9.6AI score0.02948EPSS

CVE•added 2024/01/24 6:15 p.m.•30 views

CVE-2023-51890

An infinite loop issue discovered in Mathtex 1.05 and before allows a remote attackers to consume CPU resources via crafted string in the application URL.

7.5CVSS7.4AI score0.00445EPSS

CVE•added 2024/01/24 5:15 p.m.•28 views

CVE-2023-51885

Buffer Overflow vulnerability in Mathtex v.1.05 and before allows a remote attacker to execute arbitrary code via the length of the LaTeX string component.

9.8CVSS9.7AI score0.02948EPSS

CVE•added 2024/01/24 6:15 p.m.•23 views

CVE-2023-51888

Buffer Overflow vulnerability in the nomath() function in Mathtex v.1.05 and before allows a remote attacker to cause a denial of service via a crafted string in the application URL.

7.5CVSS7.3AI score0.00672EPSS