{"id":"CVE-2024-40445","details":"A directory traversal vulnerability in forkosh Mime TeX before version 1.77 allows attackers on Windows systems to read or append arbitrary files by manipulating crafted input paths.","modified":"2026-03-15T22:49:33.871737Z","published":"2025-04-22T14:15:24.173Z","references":[{"type":"WEB","url":"https://github.com/Oefenweb/mimetex/blob/master/mimetex.c#L12414-L12423"},{"type":"WEB","url":"https://youtu.be/OII16TteaJw"},{"type":"WEB","url":"https://youtu.be/W2KPHFNfgrg"},{"type":"ADVISORY","url":"https://github.com/TaiYou-TW/CVE-2024-40445_CVE-2024-40446/"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"1.77"}]},{"events":[{"introduced":"0"},{"fixed":"1.77"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-40445.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"}]}