Axodraw2
1 CVEs
product
Monthly
In axohelp.c before 1.3 in axohelp in axodraw2 before 2.1.1b, as distributed in TeXLive and other collections, sprintf is mishandled. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
Information Disclosure
Axohelp C
Axodraw2
NVD
GitHub
CVSS 3.1
9.8
EPSS
1.9%
EPSS 2%
CVSS 9.8
CRITICAL
PATCH
Act Now
In axohelp.c before 1.3 in axohelp in axodraw2 before 2.1.1b, as distributed in TeXLive and other collections, sprintf is mishandled. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
Information Disclosure
Axohelp C
Axodraw2
NVD
GitHub