LaTeX Preamble Vulnerability Allows Unauthorized File Access

LaTeX Preamble Vulnerability Allows Unauthorized File Access

CVE-2021-40694 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Insufficient escaping of the LaTeX preamble made it possible for site administrators to read files available to the HTTP server system account.

Learn more about our Cis Benchmark Audit For Server Software.