A vulnerability has been identified in Mendix Excel Importer Module (All versions < V9.0.3). Uploading a manipulated XML File results in an exception that could expose information about the Application-Server and the used XML-Framework.
References
Link | Resource |
---|---|
https://cert-portal.siemens.com/productcert/pdf/ssa-854248.pdf | Vendor Advisory |
https://us-cert.cisa.gov/ics/advisories/icsa-21-131-09 | Third Party Advisory US Government Resource |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: siemens
Published: 2021-05-12T13:18:23
Updated: 2021-05-13T19:21:09
Reserved: 2021-04-15T00:00:00
Link: CVE-2021-31339
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-05-12T14:15:11.937
Modified: 2021-05-21T18:33:35.180
Link: CVE-2021-31339
JSON object: View
Redhat Information
No data.
CWE