XML File Upload Vulnerability in Mendix Excel Importer Module (All versions < V9.0.3)

XML File Upload Vulnerability in Mendix Excel Importer Module (All versions < V9.0.3)

CVE-2021-31339 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

A vulnerability has been identified in Mendix Excel Importer Module (All versions < V9.0.3). Uploading a manipulated XML File results in an exception that could expose information about the Application-Server and the used XML-Framework.

Learn more about our Cis Benchmark Audit For Server Software.