{"id":"CVE-2015-8106","details":"Format string vulnerability in the CmdKeywords function in funct1.c in latex2rtf before 2.3.10 allows remote attackers to execute arbitrary code via format string specifiers in the \\keywords command in a crafted TeX file.","modified":"2026-04-16T06:24:21.320007915Z","published":"2016-04-18T14:59:01Z","references":[{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1282492"},{"type":"WEB","url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-April/181276.html"},{"type":"WEB","url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-April/181677.html"},{"type":"WEB","url":"http://lists.fedoraproject.org/pipermail/package-announce/2016-April/181725.html"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2015/11/16/3"},{"type":"WEB","url":"https://sourceforge.net/p/latex2rtf/code/1244/"}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}