SIEMENS-SSA-610768 · Published 2022-07-12 · View on Siemens ProductCERT ↗

SSA-610768 V1.0: XML Entity Expansion Injection Vulnerability in Mendix Excel Importer Module

CVSS N/A MEDIUM

Risk Summary

<p> The latest update of Mendix Excel Importer module fixes an XML Entity Expansion Injection vulnerability. </p> <p> Mendix has released an update for the Mendix Excel Importer module and recommends to update to the latest version. </p>

Remediations

Refer to Siemens ProductCERT advisory for patch and remediation guidance.

Affected Vendors

Siemens

Affected Products (1)

Siemens · SSA-610768 V1.0: XML Entity Expansion Injection Vulnerability in Mendix Excel Importer Module See advisory

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more