CVE-2023-2971
MEDIUMTypora < 1.6.7 - Path Traversal and Local File Access via typora://app/typemark/
Title source: llmDescription
Improper path handling in Typora before 1.7.0-dev on Windows and Linux allows a crafted webpage to access local files and exfiltrate them to remote web servers via "typora://app/typemark/". This vulnerability can be exploited if a user opens a malicious markdown file in Typora, or copies text from a malicious webpage and paste it into Typora.
References (1)
Core 1
Core References
Exploit, Mitigation, Third Party Advisory third-party-advisory
https://starlabs.sg/advisories/23/23-2971/
Scores
CVSS v3
6.3
EPSS
0.0045
EPSS Percentile
35.6%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
partial
Details
CWE
CWE-22
Status
published
Products (1)
typora/typora
< 1.6.7
Published
Aug 19, 2023
Tracked Since
Feb 18, 2026