CVE-2024-43426
- Source
- https://cve.org/CVERecord?id=CVE-2024-43426
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-43426.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-43426
- Aliases
- Downstream
- Published
- 2024-11-07T14:15:15.510Z
- Modified
- 2026-03-12T08:28:23.726845Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
- Summary
- [none]
- Details
-
A flaw was found in pdfTeX. Insufficient sanitizing in the TeX notation filter resulted in an arbitrary file read risk on sites where pdfTeX is available, such as those with TeX Live installed.
- References
Affected packages
Git / github.com/moodle/moodle
Affected ranges
- Type
- GIT
- Repo
- https://github.com/moodle/moodle
- Events
-
IntroducedFixedIntroducedFixedIntroducedFixedIntroducedFixed
- Database specific
{ "versions": [ { "introduced": "4.1.0" }, { "fixed": "4.1.12" }, { "introduced": "4.2.0" }, { "fixed": "4.2.9" }, { "introduced": "4.3.0" }, { "fixed": "4.3.6" }, { "introduced": "4.4.0" }, { "fixed": "4.4.2" } ] }
Affected versions
v4.*
v4.1.0
v4.1.1
v4.1.10
v4.1.11
v4.1.2
v4.1.3
v4.1.4
v4.1.5
v4.1.6
v4.1.7
v4.1.8
v4.1.9
v4.2.0
v4.2.0-beta
v4.2.0-rc1
v4.2.0-rc2
v4.2.1
v4.2.2
v4.2.3
v4.2.4
v4.2.5
v4.2.6
v4.2.7
v4.2.8
v4.3.0
v4.3.0-beta
v4.3.0-rc1
v4.3.0-rc2
v4.3.1
v4.3.2
v4.3.3
v4.3.4
v4.3.5
v4.4.0
v4.4.0-beta
v4.4.0-rc1
v4.4.0-rc2
v4.4.1