CVE-2025-1434 Information
Mar 12, 2025
cve
Description
The Spreadsheet view is vulnerable to a XSS attack where a remote unauthorised attacker can read a limited amount of values or DoS the affected spreadsheet. Disclosure of secrets or other system settings is not affected as well as other spreadsheets still work as expected.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:L
Reference
https://www.areal-topkapi.com/en/topkapi/security-bulletins https://www.areal-topkapi.com/topkapi/bulletins-de-securite
Attack Complexity
LOW
Privileges Required
NONE
User Interaction Required
NONE
Scope
REQUIRED
Confidentiality Impact
CHANGED
Integrity Impact
LOW
Availability Impact
NONE
Base Score
LOW
Base Severity
6.1
Share on: