Vulnerabilities > CVE-2019-18604

047910
CVSS 9.8 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
axohelp-c-project
axodraw2-project
critical
NVD
Published: 2019-10-29
Updated: 2023-05-31

Summary

In axohelp.c before 1.3 in axohelp in axodraw2 before 2.1.1b, as distributed in TeXLive and other collections, sprintf is mishandled.

Vulnerable Configurations

Part Description Count
Application
Axohelp.C_Project
2
Application
Axodraw2_Project
4

References