📦

texlive

Vendor: tug

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 51 Total Indexed

Avg. EPSS 0.41% Exploit Prob.

Latest CVE CVE-2015-0296 Oct 06

Security Vulnerability Index

Page 1 / 6

4.7 CVSS

CVE-2015-0296

The pre-install script in texlive 3.1.20140525_r34255.fc21 as packaged in Fedora 21 and rpm, and texlive 6.20131226_r32488.fc20 and rpm allows local users to delete arbitrary files via a crafted file in the user's home directory.

EPSS: 0.40%

Severity: MEDIUM

Oct 06, 2017

6.1 CVSS

CVE-2015-5701

mktexlsr revision 36855, and before revision 36626 as packaged in texlive allows local users to write to arbitrary files via a symlink attack. NOTE: this vulnerability exists due to the reversion of a fix of CVE-2015-5700.

EPSS: 0.42%

Severity: MEDIUM

Aug 25, 2017

6.1 CVSS

CVE-2015-5700

mktexlsr revision 22855 through revision 36625 as packaged in texlive allows local users to write to arbitrary files via a symlink attack.

EPSS: 0.42%

Severity: MEDIUM

Aug 25, 2017

Displaying 3 of 51 Total Entries

1 2 3 4 5 ... 6

Total 6 Sections