Security Advisory

CVE-2024-14010

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-12 19:55:03

Last updated 2026-04-07 14:08:28

Assigner VulnCheck

State PUBLISHED

Description

Typora 1.7.4 contains a command injection vulnerability in the PDF export preferences that allows attackers to execute arbitrary system commands. Attackers can inject malicious commands into the run command input field during PDF export to achieve remote code execution.

← Browse all CVEs View on cve.org ↗