Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 3:39 a.m.5 views

CVE-2024-45048

PHPSpreadsheet is a pure PHP library for reading and writing spreadsheet files. Affected versions are subject to a bypassing of a filter which allows for an XXE-attack. This in turn allows attacker to obtain contents of local files, even if error reporting is muted. This vulnerability has been...

8.8CVSS6.4AI score0.0057EPSS
Exploits1References1
IBM Security Bulletins
IBM Security Bulletins
added 2024/12/19 4:32 p.m.61 views

Security Bulletin: Multiple Vulnerabilities in IBM API Connect

Summary Multiple vulnerabilities were addressed in IBM API Connect v10.0.9.0 Vulnerability Details CVEID:CVE-2024-5535 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by a buffer over-read flaw in the SSLselectnextproto API function when calling with an empty supported client...

9.8CVSS9.6AI score0.27018EPSS
Exploits11Affected Software1
OSV
OSV
added 2024/09/03 7:45 p.m.11 views

GHSA-HQ76-662X-7MW4 Pimcore includes vulnerable PHPOffice/PhpSpreadsheet

Summary Pimcore 10.6.x and Enterprise 10.6.x versions currently depend on PHPOffice/PhpSpreadsheet version 1.x, which has recently been identified with a security vulnerability CVE-2024-45048. To mitigate this issue, it is recommended to update to the latest version 2.2.2. For more details, pleas...

8.8CVSS7.4AI score
Exploits0References3
Github Security Blog
Github Security Blog
added 2024/09/03 7:45 p.m.46 views

Pimcore includes vulnerable PHPOffice/PhpSpreadsheet

Summary Pimcore 10.6.x and Enterprise 10.6.x versions currently depend on PHPOffice/PhpSpreadsheet version 1.x, which has recently been identified with a security vulnerability CVE-2024-45048. To mitigate this issue, it is recommended to update to the latest version 2.2.2. For more details, pleas...

8.8CVSS6.8AI score0.0057EPSS
Exploits1References3Affected Software3
Cvelist
Cvelist
added 2024/08/28 8:38 p.m.34 views

CVE-2024-45048 XML External Entity Reference (XXE) in PHPSpreadsheet

PHPSpreadsheet is a pure PHP library for reading and writing spreadsheet files. Affected versions are subject to a bypassing of a filter which allows for an XXE-attack. This in turn allows attacker to obtain contents of local files, even if error reporting is muted. This vulnerability has been...

8.8CVSS0.0057EPSS
Exploits1References2
Rows per page
Query Builder