CVE-2019-12172 — HIGH (7.8)

Vulnerability Description

Typora 0.9.9.21.1 (1913) allows arbitrary code execution via a modified file: URL syntax in the HREF attribute of an AREA element, as demonstrated by file:\\\ on macOS or Linux, or file://C| on Windows. This is different from CVE-2019-12137.

CVSS Score

7.8

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Typora	Typora	0.9.9.21.1
Apple	Mac Os X	-
Linux	Linux Kernel	-
Microsoft	Windows	-

Related Weaknesses (CWE)

CWE-22

References

https://github.com/typora/typora-issues/issues/2166ExploitThird Party Advisory
https://github.com/typora/typora-issues/issues/2166ExploitThird Party Advisory

FAQ

What is CVE-2019-12172?

CVE-2019-12172 is a vulnerability with a CVSS score of 7.8 (HIGH). Typora 0.9.9.21.1 (1913) allows arbitrary code execution via a modified file: URL syntax in the HREF attribute of an AREA element, as demonstrated by file:\\\ on macOS or Linux, or file://C| on Window...

How severe is CVE-2019-12172?

CVE-2019-12172 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2019-12172?

Check the references section above for vendor advisories and patch information. Affected products include: Typora Typora, Apple Mac Os X, Linux Linux Kernel, Microsoft Windows.