CVE-2022-34467

EPSS 0.7%CWE-776

A vulnerability has been identified in Mendix Excel Importer Module (Mendix 8 compatible) (All versions < V9.2.2), Mendix Excel Importer Module (Mendix 9 compatible) (All versions < V10.1.2). The affected component is vulnerable to XML Entity Expansion Injection. An attacker may use this to compromise the availability of the affected component.

Produtos afetados

Siemens · Mendix Excel Importer Module (Mendix 8 compatible)Siemens · Mendix Excel Importer Module (Mendix 9 compatible)

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://cert-portal.siemens.com/productcert/pdf/ssa-610768.pdf