Lucene search

K
cvelistMitreCVELIST:CVE-2024-22368
HistoryJan 09, 2024 - 12:00 a.m.

CVE-2024-22368

2024-01-0900:00:00
mitre
www.cve.org
cve-2024-22368
perl
parsing vulnerability
memoize implementation
merged cells
crafted xlsx document

5.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.0%

The Spreadsheet::ParseXLSX package before 0.28 for Perl can encounter an out-of-memory condition during parsing of a crafted XLSX document. This occurs because the memoize implementation does not have appropriate constraints on merged cells.

5.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.0%