ismailcemunver/CVE-2024-29375

Releases0

CSV Injection in Addactis IBNRS 3.10.3.107

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-29375 ↗	Apr 4, 2024Thursday, 4 April 2024, 07:15	9.8 CRITICAL	—
CSV Injection vulnerability in Addactis IBNRS v.3.10.3.107 allows a remote attacker to execute arbitrary code via a crafted .ibnrs file to the Project Description, Identifiers, Custom Triangle Name (inside Input Triangles) and Yield Curve Name parameters.