CNNVD-202509-4363 Information

CNNVD ID

CNNVD-202509-4363

Related CVE

CVE-2025-35033

• CNNVD Published: 2025-09-29

Description (Chinese)

Medical Informatics Engineering Enterprise Health是美国Medical Informatics Engineering公司的一个医疗健康解决方案。 Medical Informatics Engineering Enterprise Health存在安全漏洞，该漏洞源于远程认证攻击者可注入宏到可下载CSV文件中，可能导致CSV注入攻击。

Description (English)

Medical Intimacy Engineering Enterprise Health is a medical health solution for the American company Medicifics Engineering. There is a security loophole in the Medical Informations Engineering Enterprise Health, which stems from the fact that remote authentication attackers can inject macros into downloadable CSV documents, which could lead to CSV injection attacks.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Medical Informatics Engineering

Published

2025-09-29

Last Modified

2026-02-24

References

https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2025/va-25-272-01.json https://www.cve.org/CVERecord?id=CVE-2025-35033