VYPR
Unrated severityNVD Advisory· Published Jul 12, 2022· Updated Aug 3, 2024

CVE-2022-34467

CVE-2022-34467

Description

A vulnerability has been identified in Mendix Excel Importer Module (Mendix 8 compatible) (All versions < V9.2.2), Mendix Excel Importer Module (Mendix 9 compatible) (All versions < V10.1.2). The affected component is vulnerable to XML Entity Expansion Injection. An attacker may use this to compromise the availability of the affected component.

Affected products

3
  • Mendix 8 compatible: < 9.2.2; Mendix 9 compatible: < 10.1.2+ 2 more
    • (no CPE)range: Mendix 8 compatible: < 9.2.2; Mendix 9 compatible: < 10.1.2
    • (no CPE)range: All versions < V9.2.2
    • (no CPE)range: All versions < V10.1.2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.