Vulnerability Details CVE-2022-34467
A vulnerability has been identified in Mendix Excel Importer Module (Mendix 8 compatible) (All versions < V9.2.2), Mendix Excel Importer Module (Mendix 9 compatible) (All versions < V10.1.2). The affected component is vulnerable to XML Entity Expansion Injection. An attacker may use this to compromise the availability of the affected component.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 62.2%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.0
Products affected by CVE-2022-34467
-
cpe:2.3:a:mendix:excel_importer:*
-
cpe:2.3:a:mendix:excel_importer:-
-
cpe:2.3:a:mendix:excel_importer:5.10.0
-
cpe:2.3:a:mendix:excel_importer:5.11.0
-
cpe:2.3:a:mendix:excel_importer:5.12.0
-
cpe:2.3:a:mendix:excel_importer:5.13.0
-
cpe:2.3:a:mendix:excel_importer:5.14.0
-
cpe:2.3:a:mendix:excel_importer:5.15.0
-
cpe:2.3:a:mendix:excel_importer:5.16.0
-
cpe:2.3:a:mendix:excel_importer:5.17.0
-
cpe:2.3:a:mendix:excel_importer:5.18.0
-
cpe:2.3:a:mendix:excel_importer:5.19.0
-
cpe:2.3:a:mendix:excel_importer:5.20.0
-
cpe:2.3:a:mendix:excel_importer:5.9.0
-
cpe:2.3:a:mendix:excel_importer:7.0.0
-
cpe:2.3:a:mendix:excel_importer:8.0.0
-
cpe:2.3:a:mendix:excel_importer:8.1.0
-
cpe:2.3:a:mendix:excel_importer:8.1.1
-
cpe:2.3:a:mendix:excel_importer:8.1.2
-
cpe:2.3:a:mendix:excel_importer:8.2.0
-
cpe:2.3:a:mendix:excel_importer:8.2.1
-
cpe:2.3:a:mendix:excel_importer:8.2.2
-
cpe:2.3:a:mendix:excel_importer:9.0.0
-
cpe:2.3:a:mendix:excel_importer:9.0.1
-
cpe:2.3:a:mendix:excel_importer:9.0.2
-
cpe:2.3:a:mendix:excel_importer:9.0.3