CPANSA-Spreadsheet-ParseExcel-2023-7101: Spreadsheet-ParseExcel vulnerability
| Publisher | giterlizzi | Document category | csaf_security_advisory |
|---|---|---|---|
| Initial release date | 2023-12-24T00:00:00 | Engine | CSAF Perl Toolkit 0.25 |
| Current release date | 2023-12-24T00:00:00 | Build Date | |
| Current version | 1 | Status | final |
| CVSS v3.1 Base Score | 7.8 | Severity | |
| Original language | Language | en | |
| Also referred to | |||
Vulnerability Description
Spreadsheet::ParseExcel version 0.65 is a Perl module used for parsing Excel files. Spreadsheet::ParseExcel is vulnerable to an arbitrary code execution (ACE) vulnerability due to passing unvalidated input from a file into a string-type âevalâ. Specifically, the issue stems from the evaluation of Number format strings (not to be confused with printf-style format strings) within the Excel parsing logic.
Vulnerabilities
CVE-2023-7101
Vulnerability DescriptionSpreadsheet::ParseExcel version 0.65 is a Perl module used for parsing Excel files. Spreadsheet::ParseExcel is vulnerable to an arbitrary code execution (ACE) vulnerability due to passing unvalidated input from a file into a string-type “eval”. Specifically, the issue stems from the evaluation of Number format strings (not to be confused with printf-style format strings) within the Excel parsing logic.
| Weakness | CWE-95 : Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection') |
|---|
Product status
Known affected
| Product | Score | ||||||||
|---|---|---|---|---|---|---|---|---|---|
| Spreadsheet-ParseExcel less than 0.66 |
|
Fixed
- Spreadsheet-ParseExcel greater than or equal 0.66
giterlizzi
Namespace: https://github.com/giterlizzi/
gdt@cpan.org
References
- CPANSA-Spreadsheet-ParseExcel-2023-7101 JSON self
https://raw.githubusercontent.com/giterlizzi/perl-CPANSA-CSAF/develop/csaf/white/2023/cpansa-spreadsheet-parseexcel-2023-7101.json - http://www.openwall.com/lists/oss-security/2023/12/29/4 external
http://www.openwall.com/lists/oss-security/2023/12/29/4 - https://github.com/jmcnamara/spreadsheet-parseexcel/blob/c7298592e102a375d43150cd002feed806557c15/lib/Spreadsheet/ParseExcel/Utility.pm#L171 external
https://github.com/jmcnamara/spreadsheet-parseexcel/blob/c7298592e102a375d43150cd002feed806557c15/lib/Spreadsheet/ParseExcel/Utility.pm#L171 - https://github.com/mandiant/Vulnerability-Disclosures/blob/master/2023/MNDT-2023-0019.md external
https://github.com/mandiant/Vulnerability-Disclosures/blob/master/2023/MNDT-2023-0019.md - https://https://github.com/haile01/perl_spreadsheet_excel_rce_poc external
https://https://github.com/haile01/perl_spreadsheet_excel_rce_poc - https://https://metacpan.org/dist/Spreadsheet-ParseExcel external
https://https://metacpan.org/dist/Spreadsheet-ParseExcel - https://https://www.cve.org/CVERecord?id=CVE-2023-7101 external
https://https://www.cve.org/CVERecord?id=CVE-2023-7101 - https://lists.debian.org/debian-lts-announce/2023/12/msg00025.html external
https://lists.debian.org/debian-lts-announce/2023/12/msg00025.html - CVE-2023-7101 (NVD) external
https://nvd.nist.gov/vuln/detail/CVE-2023-7101
Revision history
| Version | Date of the revision | Summary of the revision |
|---|---|---|
| 1 | Sun Dec 24 00:00:00 2023 | First release |
Sharing rules
TLP:WHITE
For the TLP version see: https://www.first.org/tlp/