Lucene search
K

21 matches found

OSV
OSV
added 2025/10/24 2:33 p.m.5 views

OESA-2025-2508 perl-Spreadsheet-ParseExcel security update

The Spreadsheet::ParseExcel module can be used to read information from an Excel 95-2003 file. Security Fixes: Spreadsheet::ParseExcel version 0.65, a Perl module for parsing Excel files, is vulnerable to arbitrary code execution ACE due to passing unvalidated input from a file into a string-type...

7.8CVSS7.7AI score0.167EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/02/25 12:0 a.m.4 views

openSUSE Security Advisory (SUSE-SU-2024:0158-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.167EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2025/01/22 12:0 a.m.21 views

Debian dla-3702 : libspreadsheet-parseexcel-perl - security update

The remote Debian 10 host has a package installed that is affected by a vulnerability as referenced in the dla-3702 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3702-1 [email protected] https://www.debian.org/lts/security/...

7.8CVSS8.2AI score0.167EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/05/21 12:0 a.m.32 views

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS : Spreadsheet::ParseExcel vulnerability (USN-6781-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-6781-1 advisory. Le Dinh Hai discovered that Spreadsheet::ParseExcel was passing unvalidated input from a file into a string-type...

7.8CVSS8.2AI score0.167EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.49 views

Spreadsheet::ParseExcel RCE (CVE-2023-7101)

According to its self-reported version number, the Spreadsheet::ParseExcel perl module is vulnerable to a remote code execution vulnerability due to passing unvalidated input from a file into a string-type “eval”. Specifically, the issue stems from the evaluation of Number format strings not ...

7.8CVSS8.1AI score0.167EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/02/12 12:0 a.m.29 views

FreeBSD : p5-Spreadsheet-ParseExcel -- Remote Code Execution Vulnerability (cb22a9a6-c907-11ee-8d1c-40b034429ecf)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the cb22a9a6-c907-11ee-8d1c-40b034429ecf advisory. - Spreadsheet::ParseExcel version 0.65 is a Perl module used for parsing Excel files...

7.8CVSS8.6AI score0.167EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2024/01/23 12:0 a.m.25 views

Amazon Linux 2023 : perl-Spreadsheet-ParseExcel (ALAS2023-2024-491)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-491 advisory. Spreadsheet::ParseExcel version 0.65 is a Perl module used for parsing Excel files. Spreadsheet::ParseExcel is vulnerable to an arbitrary code execution ACE vulnerability due to passing unvalidated inpu...

7.8CVSS8.5AI score0.167EPSS
Exploits1References4
Amazon
Amazon
added 2024/01/22 12:0 a.m.28 views

Important: perl-Spreadsheet-ParseExcel

Issue Overview: Spreadsheet::ParseExcel version 0.65 is a Perl module used for parsing Excel files. Spreadsheet::ParseExcel is vulnerable to an arbitrary code execution ACE vulnerability due to passing unvalidated input from a file into a string-type "eval". Specifically, the issue stems from the...

7.8CVSS8.5AI score0.167EPSS
Exploits1
Amazon
Amazon
added 2024/01/22 12:0 a.m.7 views

Important: perl-Spreadsheet-ParseExcel

Issue Overview: Spreadsheet::ParseExcel version 0.65 is a Perl module used for parsing Excel files. Spreadsheet::ParseExcel is vulnerable to an arbitrary code execution ACE vulnerability due to passing unvalidated input from a file into a string-type "eval". Specifically, the issue stems from the...

7.8CVSS7.6AI score0.167EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/01/19 12:0 a.m.27 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : perl-Spreadsheet-ParseExcel (SUSE-SU-2024:0158-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2024:0158-1 advisory. - CVE-2023-7101: Fixed a command injection issue when parsing an untrusted spreadsheet bsc1218414. Tenabl...

7.8CVSS7.4AI score0.167EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2024/01/12 12:0 a.m.13 views

Debian: Security Advisory (DLA-3702-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.9AI score0.167EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/01/07 12:0 a.m.31 views

Fedora 39 : perl-Spreadsheet-ParseExcel (2023-921f6975c2)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-921f6975c2 advisory. Fix for CVE-2023-7101 unvalidated input can lead to arbitrary code execution vulnerability. Tenable has extracted the preceding description block...

7.8CVSS8.7AI score0.167EPSS
Exploits1References2
Debian
Debian
added 2023/12/31 1:9 a.m.30 views

[SECURITY] [DLA 3702-1] libspreadsheet-parseexcel-perl security update

Debian LTS Advisory DLA-3702-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin December 31, 2023 https://wiki.debian.org/LTS Package : libspreadsheet-parseexcel-perl Version : 0.6500-1+deb10u1 CVE ID : CVE-2023-7101 Debian Bug : 1059450 Le Dinh Hai discovered that...

7.8CVSS7.5AI score0.167EPSS
Exploits1
Debian
Debian
added 2023/12/30 4:14 p.m.51 views

[SECURITY] [DSA 5592-1] libspreadsheet-parseexcel-perl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5592-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 30, 2023 https://www.debian.org/security/faq -...

7.8CVSS6.7AI score0.167EPSS
Exploits1
The Hacker News
The Hacker News
added 2023/12/27 12:35 p.m.80 views

Chinese Hackers Exploited New Zero-Day in Barracuda's ESG Appliances

Barracuda has revealed that Chinese threat actors exploited a new zero-day in its Email Security Gateway ESG appliances to deploy backdoors on a "limited number" of devices. Tracked as CVE-2023-7102, the issue relates to a case of arbitrary code execution that resides within a third-party and...

9.8CVSS7.2AI score0.86956EPSS
Exploits5
Circl
Circl
added 2023/12/24 11:26 p.m.8 views

CVE-2023-7101

creationtimestamp| type| source ---|---|--- 2023-12-24 23:26:30+00:00| seen| https://t.me/ctinow/159097 2023-12-26 14:20:06+00:00| exploited| https://t.me/truesecator/5247 2023-12-27 09:36:05+00:00| seen| MISP/3eeca3ec-69cf-4e93-9283-db148ac21b9b 2023-12-27 22:00:08+00:00| seen|...

7.8CVSS7.2AI score0.167EPSS
Exploits1References10
OSV
OSV
added 2023/12/24 10:15 p.m.8 views

CVE-2023-7101

Spreadsheet::ParseExcel version 0.65 is a Perl module used for parsing Excel files. Spreadsheet::ParseExcel is vulnerable to an arbitrary code execution ACE vulnerability due to passing unvalidated input from a file into a string-type “eval”. Specifically, the issue stems from the evaluation of...

7.8CVSS8AI score0.167EPSS
Exploits1References12
UbuntuCve
UbuntuCve
added 2023/12/24 10:15 p.m.60 views

CVE-2023-7101

Spreadsheet::ParseExcel version 0.65 is a Perl module used for parsing Excel files. Spreadsheet::ParseExcel is vulnerable to an arbitrary code execution ACE vulnerability due to passing unvalidated input from a file into a string-type “eval”. Specifically, the issue stems from the evaluation of...

7.8CVSS7.3AI score0.167EPSS
Exploits1References6
OSV
OSV
added 2023/12/24 10:15 p.m.3 views

UBUNTU-CVE-2023-7101

Spreadsheet::ParseExcel version 0.65 is a Perl module used for parsing Excel files. Spreadsheet::ParseExcel is vulnerable to an arbitrary code execution ACE vulnerability due to passing unvalidated input from a file into a string-type “eval”. Specifically, the issue stems from the evaluation of...

7.8CVSS6.3AI score0.167EPSS
Exploits1References7
CVE
CVE
added 2023/12/24 9:34 p.m.398 views

CVE-2023-7101

CVE-2023-7101 affects Spreadsheet::ParseExcel (Perl) v0.65, where an ACE exists due to evaluating unvalidated file input in Number format string handling via eval. This enables arbitrary code execution when parsing Excel files; risk is rated high (CVSS 3.1: AV Local, AC Low, PR None, UI Required,...

7.8CVSS7.9AI score0.167EPSS
In wildExploits1References12Affected Software1
Rows per page
Query Builder