Vulnerability Description
KaTeX is a JavaScript library for TeX math rendering on the web. KaTeX users who render untrusted mathematical expressions could encounter malicious input using `\edef` that causes a near-infinite loop, despite setting `maxExpand` to avoid such loops. This can be used as an availability attack, where e.g. a client rendering another user's KaTeX input will be unable to use the site due to memory overflow, tying up the main thread, or stack overflow. Upgrade to KaTeX v0.16.10 to remove this vulnerability.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Katex | Katex | >= 0.1.0, < 0.16.10 |
Related Weaknesses (CWE)
References
- https://github.com/KaTeX/KaTeX/commit/e88b4c357f978b1bca8edfe3297f0aa309bcbe34Patch
- https://github.com/KaTeX/KaTeX/security/advisories/GHSA-64fm-8hw2-v72wVendor Advisory
- https://github.com/github/advisory-database/pull/6777
- https://github.com/KaTeX/KaTeX/commit/e88b4c357f978b1bca8edfe3297f0aa309bcbe34Patch
- https://github.com/KaTeX/KaTeX/security/advisories/GHSA-64fm-8hw2-v72wVendor Advisory
FAQ
What is CVE-2024-28243?
CVE-2024-28243 is a vulnerability with a CVSS score of 6.5 (MEDIUM). KaTeX is a JavaScript library for TeX math rendering on the web. KaTeX users who render untrusted mathematical expressions could encounter malicious input using `\edef` that causes a near-infinite loo...
How severe is CVE-2024-28243?
CVE-2024-28243 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-28243?
Check the references section above for vendor advisories and patch information. Affected products include: Katex Katex.