← voltar
CVE-2024-43426

Moodle: arbitrary file read risk through pdftex

CVSS 7.5 HIGHEPSS 0.6%CWE-1287
A flaw was found in pdfTeX. Insufficient sanitizing in the TeX notation filter resulted in an arbitrary file read risk on sites where pdfTeX is available, such as those with TeX Live installed.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Produtos afetados
moodle

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://bugzilla.redhat.com/show_bug.cgi?id=2304254https://moodle.org/mod/forum/discuss.php?d=461194