Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2021-40848

Опубликовано: 03 нояб. 2021
Источник: debian
EPSS Низкий

Описание

In Mahara before 20.04.5, 20.10.3, 21.04.2, and 21.10.0, exported CSV files could contain characters that a spreadsheet program could interpret as a command, leading to execution of a malicious string locally on a device, aka CSV injection.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
mahararemovedpackage

EPSS

Процентиль: 72%
0.00745
Низкий

Связанные уязвимости

CVSS3: 7.8
nvd
почти 4 года назад

In Mahara before 20.04.5, 20.10.3, 21.04.2, and 21.10.0, exported CSV files could contain characters that a spreadsheet program could interpret as a command, leading to execution of a malicious string locally on a device, aka CSV injection.

github
около 3 лет назад

In Mahara before 20.04.5, 20.10.3, 21.04.2, and 21.10.0, exported CSV files could contain characters that a spreadsheet program could interpret as a command, leading to execution of a malicious string locally on a device, aka CSV injection.

EPSS

Процентиль: 72%
0.00745
Низкий