21 matches found
OESA-2025-2508 perl-Spreadsheet-ParseExcel security update
The Spreadsheet::ParseExcel module can be used to read information from an Excel 95-2003 file. Security Fixes: Spreadsheet::ParseExcel version 0.65, a Perl module for parsing Excel files, is vulnerable to arbitrary code execution ACE due to passing unvalidated input from a file into a string-type...
openSUSE Security Advisory (SUSE-SU-2024:0158-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian dla-3702 : libspreadsheet-parseexcel-perl - security update
The remote Debian 10 host has a package installed that is affected by a vulnerability as referenced in the dla-3702 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3702-1 [email protected] https://www.debian.org/lts/security/...
Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS : Spreadsheet::ParseExcel vulnerability (USN-6781-1)
The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-6781-1 advisory. Le Dinh Hai discovered that Spreadsheet::ParseExcel was passing unvalidated input from a file into a string-type...
Spreadsheet::ParseExcel RCE (CVE-2023-7101)
According to its self-reported version number, the Spreadsheet::ParseExcel perl module is vulnerable to a remote code execution vulnerability due to passing unvalidated input from a file into a string-type âevalâ. Specifically, the issue stems from the evaluation of Number format strings not ...
FreeBSD : p5-Spreadsheet-ParseExcel -- Remote Code Execution Vulnerability (cb22a9a6-c907-11ee-8d1c-40b034429ecf)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the cb22a9a6-c907-11ee-8d1c-40b034429ecf advisory. - Spreadsheet::ParseExcel version 0.65 is a Perl module used for parsing Excel files...
Amazon Linux 2023 : perl-Spreadsheet-ParseExcel (ALAS2023-2024-491)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-491 advisory. Spreadsheet::ParseExcel version 0.65 is a Perl module used for parsing Excel files. Spreadsheet::ParseExcel is vulnerable to an arbitrary code execution ACE vulnerability due to passing unvalidated inpu...
Important: perl-Spreadsheet-ParseExcel
Issue Overview: Spreadsheet::ParseExcel version 0.65 is a Perl module used for parsing Excel files. Spreadsheet::ParseExcel is vulnerable to an arbitrary code execution ACE vulnerability due to passing unvalidated input from a file into a string-type "eval". Specifically, the issue stems from the...
Important: perl-Spreadsheet-ParseExcel
Issue Overview: Spreadsheet::ParseExcel version 0.65 is a Perl module used for parsing Excel files. Spreadsheet::ParseExcel is vulnerable to an arbitrary code execution ACE vulnerability due to passing unvalidated input from a file into a string-type "eval". Specifically, the issue stems from the...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : perl-Spreadsheet-ParseExcel (SUSE-SU-2024:0158-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2024:0158-1 advisory. - CVE-2023-7101: Fixed a command injection issue when parsing an untrusted spreadsheet bsc1218414. Tenabl...
Debian: Security Advisory (DLA-3702-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 39 : perl-Spreadsheet-ParseExcel (2023-921f6975c2)
The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-921f6975c2 advisory. Fix for CVE-2023-7101 unvalidated input can lead to arbitrary code execution vulnerability. Tenable has extracted the preceding description block...
[SECURITY] [DLA 3702-1] libspreadsheet-parseexcel-perl security update
Debian LTS Advisory DLA-3702-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin December 31, 2023 https://wiki.debian.org/LTS Package : libspreadsheet-parseexcel-perl Version : 0.6500-1+deb10u1 CVE ID : CVE-2023-7101 Debian Bug : 1059450 Le Dinh Hai discovered that...
[SECURITY] [DSA 5592-1] libspreadsheet-parseexcel-perl security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5592-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 30, 2023 https://www.debian.org/security/faq -...
Chinese Hackers Exploited New Zero-Day in Barracuda's ESG Appliances
Barracuda has revealed that Chinese threat actors exploited a new zero-day in its Email Security Gateway ESG appliances to deploy backdoors on a "limited number" of devices. Tracked as CVE-2023-7102, the issue relates to a case of arbitrary code execution that resides within a third-party and...
CVE-2023-7101
creationtimestamp| type| source ---|---|--- 2023-12-24 23:26:30+00:00| seen| https://t.me/ctinow/159097 2023-12-26 14:20:06+00:00| exploited| https://t.me/truesecator/5247 2023-12-27 09:36:05+00:00| seen| MISP/3eeca3ec-69cf-4e93-9283-db148ac21b9b 2023-12-27 22:00:08+00:00| seen|...
CVE-2023-7101
Spreadsheet::ParseExcel version 0.65 is a Perl module used for parsing Excel files. Spreadsheet::ParseExcel is vulnerable to an arbitrary code execution ACE vulnerability due to passing unvalidated input from a file into a string-type “eval”. Specifically, the issue stems from the evaluation of...
CVE-2023-7101
Spreadsheet::ParseExcel version 0.65 is a Perl module used for parsing Excel files. Spreadsheet::ParseExcel is vulnerable to an arbitrary code execution ACE vulnerability due to passing unvalidated input from a file into a string-type “eval”. Specifically, the issue stems from the evaluation of...
UBUNTU-CVE-2023-7101
Spreadsheet::ParseExcel version 0.65 is a Perl module used for parsing Excel files. Spreadsheet::ParseExcel is vulnerable to an arbitrary code execution ACE vulnerability due to passing unvalidated input from a file into a string-type “eval”. Specifically, the issue stems from the evaluation of...
CVE-2023-7101
CVE-2023-7101 affects Spreadsheet::ParseExcel (Perl) v0.65, where an ACE exists due to evaluating unvalidated file input in Number format string handling via eval. This enables arbitrary code execution when parsing Excel files; risk is rated high (CVSS 3.1: AV Local, AC Low, PR None, UI Required,...