CVE-2023-37219

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jul 30, 2023

Updated: Aug 4, 2023

CWE ID 1236

Summary

CVE-2023-37219 is a newly identified cybersecurity vulnerability affecting Tadiran Telecom's Composit software. This issue falls under the Common Vulnerabilities and Exposures (CVE) category CWE-1236, which signifies Improper Neutralization of Formula Elements in a CSV File. An attacker can exploit this vulnerability by crafting malicious CSV files that, when imported, may execute arbitrary code or commands. This could potentially lead to unauthorized access, data theft, or system compromise. Organizations using Tadiran Telecom's Composit software are advised to apply the available patch or update as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database