Critical severity9.8NVD Advisory· Published Apr 4, 2024· Updated Apr 15, 2026

CVE-2024-29375

Description

CSV Injection vulnerability in Addactis IBNRS v.3.10.3.107 allows a remote attacker to execute arbitrary code via a crafted .ibnrs file to the Project Description, Identifiers, Custom Triangle Name (inside Input Triangles) and Yield Curve Name parameters.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.009
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000