Vulnerability CVE-2023-45597


Published: 2024-03-05

Description:
A CWE-1236 ??Improper Neutralization of Formula Elements in a CSV File? vulnerability in the ??file_configuration? functionality of the web application (concerning the function ??export_file?) allows a remote authenticated attacker to inject arbitrary formulas inside generated CSV files. This issue affects: AiLux imx6 bundle below version imx6_1.0.7-2.

 References:
https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2023-45597

Copyright 2026, cxsecurity.com

 

Back to Top