CVE-2024-28246

EPSS 0.06%
Veröffentlicht 25.03.2024 20:15:08
Zuletzt bearbeitet 02.09.2025 16:36:38
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

KaTeX is a JavaScript library for TeX math rendering on the web. Code that uses KaTeX's `trust` option, specifically that provides a function to blacklist certain URL protocols, can be fooled by URLs in malicious inputs that use uppercase characters in the protocol. In particular, this can allow for malicious input to generate `javascript:` links in the output, even if the `trust` function tries to forbid this protocol via `trust: (context) => context.protocol !== 'javascript'`. Upgrade to KaTeX v0.16.10 to remove this vulnerability.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 2 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Katex ≫ Katex Version >= 0.11.0 < 0.16.10

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.06%	0.176

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.4	2.8	2.5	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
security-advisories@github.com	5.5	2.1	3.4	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

CWE-184 Incomplete List of Disallowed Inputs

The product implements a protection mechanism that relies on a list of inputs (or properties of inputs) that are not allowed by policy or otherwise require other action to neutralize before additional processing takes place, but the list is incomplete.

CWE-697 Incorrect Comparison

The product compares two entities in a security-relevant context, but the comparison is incorrect, which may lead to resultant weaknesses.

https://github.com/KaTeX/KaTeX/commit/fc5af64183a3ceb9be9d1c23a275999a728593de

Patch

https://github.com/KaTeX/KaTeX/security/advisories/GHSA-3wc5-fcw2-2329

Third Party Advisory

Mitigation

https://nvd.nist.gov/vuln/detail/CVE-2024-28246

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-28246

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-28246

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2024-28246