Lucene search

Veracode Vulnerability DatabaseVERACODE:48252

HistoryJul 29, 2024 - 8:56 a.m.

Arbitrary File Read

2024-07-2908:56:25

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

anki

vulnerability

arbitrary file read

sanitization

verbatim package

latex

attackers

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

AI Score

6.5

Confidence

High

EPSS

0.001

Percentile

36.5%

JSON

anki is vulnerable to Arbitrary File Read. The vulnerability is due to the lack of proper sanitization of the verbatim package when processing Latex, which allows attackers to share a specially crafted flashcard to trigger this vulnerability.

References

github.com/ankitects/anki/commit/06f7aa393d21d7d5dd8039e15d543b73c3346932

github.com/ankitects/anki/pull/3218

skii.dev/anki-0day/

talosintelligence.com/vulnerability_reports/TALOS-2024-1992

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

AI Score

6.5

Confidence

High

EPSS

0.001

Percentile

36.5%

JSON

Related for VERACODE:48252