CVE-2023-2317 – This DOM-based XSS vulnerability in Typora allo... (How to Fix)

Q: What is the severity of CVE-2023-2317?

CVE-2023-2317 has a CVSS score of 8.6 (HIGH). This DOM-based XSS vulnerability in Typora allows attackers to execute arbitrary JavaScript code by tricking users into opening malicious markdown files or pasting content from malicious webpages. The exploit runs in the context of Typora's main window, potentially compromising the user's system. All Typora users on Windows and Linux running versions before 1.6.7 are affected.

📋 TL;DR

This DOM-based XSS vulnerability in Typora allows attackers to execute arbitrary JavaScript code by tricking users into opening malicious markdown files or pasting content from malicious webpages. The exploit runs in the context of Typora's main window, potentially compromising the user's system. All Typora users on Windows and Linux running versions before 1.6.7 are affected.

💻 Affected Systems

Products:

Typora

Versions: All versions before 1.6.7

Operating Systems: Windows, Linux

Default Config Vulnerable: ⚠️ Yes

Notes: MacOS versions are not affected according to vendor advisory. Vulnerability requires user interaction via opening malicious markdown files or pasting content.

📦 What is this software?

Typora by Typora

View all CVEs affecting Typora →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise through arbitrary code execution, data theft, ransomware deployment, or persistence mechanisms installation.

🟠

Likely Case

Local file access, credential theft from browser storage, keylogging, or installing additional malware.

🟢

If Mitigated

Limited impact if JavaScript execution is blocked or sandboxed, though some data exposure may still occur.

🌐 Internet-Facing: MEDIUM

🏢 Internal Only: HIGH

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploitation requires user interaction but is straightforward once malicious content is delivered. Public proof-of-concept exists in advisory.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 1.6.7 and later

Vendor Advisory: https://support.typora.io/What's-New-1.6/

Restart Required: Yes

Instructions:

1. Open Typora. 2. Go to Help → Check for Updates. 3. Download and install version 1.6.7 or later. 4. Restart Typora.

🔧 Temporary Workarounds

Disable automatic content loading

all

Prevent Typora from automatically loading external content or executing embedded scripts

Use sandboxed environment

all

Run Typora in a sandboxed or isolated environment to limit potential damage

🧯 If You Can't Patch

Avoid opening untrusted markdown files in Typora
Disable Typora or use alternative markdown editors until patched

🔍 How to Verify

Check if Vulnerable:

Check Typora version in Help → About. If version is below 1.6.7, system is vulnerable.

Check Version:

typora --version (Linux) or check About dialog (Windows)

Verify Fix Applied:

Confirm Typora version is 1.6.7 or higher in Help → About.

📡 Detection & Monitoring

Log Indicators:

Unusual file access patterns from Typora process
Typora loading typora://app/typemark/updater/update.html

Network Indicators:

Typora making unexpected network connections
Downloads of markdown files from untrusted sources

SIEM Query:

process_name:"typora.exe" AND (url:"typora://app/typemark/updater/update.html" OR file_access:"*.md" from untrusted_source)

📊 Metadata

CVE ID: CVE-2023-2317

CVSS v3 Score: 8.6 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

CWE: CWE-79

Published: August 19, 2023

Last Updated: November 21, 2024

🔗 References

https://starlabs.sg/advisories/23/23-2317/ Exploit,Mitigation,Third Party Advisory
https://support.typora.io/What's-New-1.6/ Vendor Advisory
https://starlabs.sg/advisories/23/23-2317/ Exploit,Mitigation,Third Party Advisory
https://support.typora.io/What's-New-1.6/ Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-2317, you might also want to check these: