CVE-2025-52386 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

CycloneDX Sunshine v0.9 is vulnerable to CSV Formula Injection via a crafted JSON file
Medium CVSS: 5.4

CVE-2025-52386

CycloneDX Sunshine v0.9 is vulnerable to CSV Formula Injection via a crafted JSON file
Vendor
-
Product
-
CWE
CWE-1236
Yayın Tarihi
2025-08-13 14:15:31
Güncelleme
2025-08-13 20:15:30
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-1236 MEDIUM 2025

Referanslar

https://github.com/CycloneDX/Sunshine https://github.com/VishalSreenivas/Formula-Injection-in-CycloneDX-Sunshine/blob/main/CVE-2025-52386.md https://github.com/VishalSreenivas/Formula-Injection-in-CycloneDX-Sunshine/blob/main/payload.json