CVE-2022-34467

CVE-2022-34467

Vendor Siemens
Product Mendix Excel Importer Module (Mendix 8 compatible)
Weakness CWE-776
Published July 12, 2022
Last update August 3, 2024

CVSS base score

What the vulnerability does

01Description

A vulnerability has been identified in Mendix Excel Importer Module (Mendix 8 compatible) (All versions < V9.2.2), Mendix Excel Importer Module (Mendix 9 compatible) (All versions < V10.1.2). The affected component is vulnerable to XML Entity Expansion Injection. An attacker may use this to compromise the availability of the affected component.

Key dates

02Disclosure timeline

July 12, 2022 CVE published
August 3, 2024 Record updated