Vulnerability CVE-2024-0849
Published: 2024-02-07

Description:
Leanote version 2.7.0 allows obtaining arbitrary local files. This is possible

because the application is vulnerable to LFR.

 References:
https://github.com/leanote/desktop-app
https://fluidattacks.com/advisories/alesso
Copyright 2026, cxsecurity.com

 

Back to Top