VYPR
Medium severity5.9NVD Advisory· Published Mar 5, 2024· Updated Jun 17, 2026

CVE-2023-45597

CVE-2023-45597

Description

A CWE-1236 “Improper Neutralization of Formula Elements in a CSV File” vulnerability in the “file_configuration” functionality of the web application (concerning the function “export_file”) allows a remote authenticated attacker to inject arbitrary formulas inside generated CSV files. This issue affects: AiLux imx6 bundle below version imx6_1.0.7-2.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • AiLux/imx6 bundlellm-fuzzy2 versions
    <imx6_1.0.7-2+ 1 more
    • (no CPE)range: <imx6_1.0.7-2
    • (no CPE)range: 0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.