Search Results | AttackerKB

A vulnerability has been identified in Mendix Excel Importer Module (Mendix 8 compatible) (All versions < V9.2.2), Mendix Excel Importer Module (Mendix 9 compatible) (All versions < V10.1.2). The affected component is vulnerable to XML Entity Expansion Injection. An attacker may use this to compromise the availability of the affected component.

Attack Vector: Network Privileges: Low User Interaction: None

Attacker Value

Unknown

CVE-2022-30173

Disclosure Date: June 15, 2022 (last updated November 29, 2024)

Microsoft Excel Remote Code Execution Vulnerability

Attacker Value

Unknown

CVE-2022-26903

Disclosure Date: April 15, 2022 (last updated November 29, 2024)

Windows Graphics Component Remote Code Execution Vulnerability

Attacker Value

Unknown

CVE-2022-26901

Disclosure Date: April 15, 2022 (last updated November 29, 2024)

Microsoft Excel Remote Code Execution Vulnerability

Attacker Value

Unknown

CVE-2022-23640

Disclosure Date: March 02, 2022 (last updated February 23, 2025)

Excel-Streaming-Reader is an easy-to-use implementation of a streaming Excel reader using Apache POI. Prior to xlsx-streamer 2.1.0, the XML parser that was used did apply all the necessary settings to prevent XML Entity Expansion issues. Upgrade to version 2.1.0 to receive a patch. There is no known workaround.

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2022-22716

Disclosure Date: February 09, 2022 (last updated February 23, 2025)

Microsoft Excel Information Disclosure Vulnerability

417 Total Results

Displaying 51-60 of 417

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Quick Cookie Notification