CVE-2024-29375

Description

CSV Injection vulnerability in Addactis IBNRS v.3.10.3.107 allows a remote attacker to execute arbitrary code via a crafted .ibnrs file to the Project Description, Identifiers, Custom Triangle Name (inside Input Triangles) and Yield Curve Name parameters.

PUBLISHED Reserved 2024-03-19 | Published 2024-04-04 | Updated 2025-03-28 | Assigner mitre

References

github.com/ismailcemunver/CVE-2024-29375

github.com/ismailcemunver/CVE-2024-29375

cve.org (CVE-2024-29375)

nvd.nist.gov (CVE-2024-29375)

Download JSON