VYPR
High severityNVD Advisory· Published Feb 11, 2022· Updated Aug 4, 2024

CVE-2021-46363

CVE-2021-46363

Description

An issue in the Export function of Magnolia v6.2.3 and below allows attackers to perform Formula Injection attacks via crafted CSV/XLS files. These formulas may result in arbitrary code execution on a victim's computer when opening the exported files with Microsoft Excel.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
info.magnolia:magnolia-coreMaven
< 6.2.46.2.4

Affected products

1

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.