Skip to main content

CVE-2024-29375

Description

CSV Injection vulnerability in Addactis IBNRS v.3.10.3.107 allows a remote attacker to execute arbitrary code via a crafted .ibnrs file to the Project Description, Identifiers, Custom Triangle Name (inside Input Triangles) and Yield Curve Name parameters.

NVD
Severity: N/A
CVE ID: CVE-2024-29375
CVSS Score: N/A
CVSS Metrics: NVD assessment not yet provided.

Refrence: NVD MITRE

Proof Of Concept

ismailcemunver

CSV Injection in Addactis IBNRS 3.10.3.107

Refrence: GitHub

Description
Proof Of Concept