Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Medical Informatics Engineering Enterprise Health CSV injection
Vulnerability Description
Medical Informatics Engineering Enterprise Health has a CSV injection vulnerability that allows a remote, authenticated attacker to inject macros in downloadable CSV files. This issue is fixed as of 2025-03-14.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:L/A:N
Vulnerability Type
CWE-1236
Vulnerability Title
Medical Informatics Engineering Enterprise Health 安全漏洞
Vulnerability Description
Medical Informatics Engineering Enterprise Health是美国Medical Informatics Engineering公司的一个医疗健康解决方案。 Medical Informatics Engineering Enterprise Health存在安全漏洞,该漏洞源于远程认证攻击者可注入宏到可下载CSV文件中,可能导致CSV注入攻击。
CVSS Information
N/A
Vulnerability Type
N/A