Unrated severityNVD Advisory· Published Jul 12, 2022· Updated Aug 3, 2024
CVE-2022-34467
CVE-2022-34467
Description
A vulnerability has been identified in Mendix Excel Importer Module (Mendix 8 compatible) (All versions < V9.2.2), Mendix Excel Importer Module (Mendix 9 compatible) (All versions < V10.1.2). The affected component is vulnerable to XML Entity Expansion Injection. An attacker may use this to compromise the availability of the affected component.
Affected products
3Mendix 8 compatible: < 9.2.2; Mendix 9 compatible: < 10.1.2+ 2 more
- (no CPE)range: Mendix 8 compatible: < 9.2.2; Mendix 9 compatible: < 10.1.2
- (no CPE)range: All versions < V9.2.2
- (no CPE)range: All versions < V10.1.2
Patches
Vulnerability mechanics
References
1- cert-portal.siemens.com/productcert/pdf/ssa-610768.pdfmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.