CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-22363
https://notcve.org/view.php?id=CVE-2024-22363
05 Apr 2024 — SheetJS Community Edition before 0.20.2 is vulnerable.to Regular Expression Denial of Service (ReDoS). SheetJS Community Edition anterior a 0.20.2 es vulnerable a la denegación de servicio de expresión regular (ReDoS). • https://cdn.sheetjs.com/advisories/CVE-2024-22363 • CWE-1333: Inefficient Regular Expression Complexity •
CVSS: 7.8EPSS: 2%CPEs: 1EXPL: 1CVE-2023-30533
https://notcve.org/view.php?id=CVE-2023-30533
24 Apr 2023 — SheetJS Community Edition before 0.19.3 allows Prototype Pollution via a crafted file. In other words. 0.19.2 and earlier are affected, whereas 0.19.3 and later are unaffected. • https://github.com/BenEdridge/CVE-2023-30533 • CWE-1321: Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2021-32014
https://notcve.org/view.php?id=CVE-2021-32014
19 Jul 2021 — SheetJS and SheetJS Pro through 0.16.9 allows attackers to cause a denial of service (CPU consumption) via a crafted .xlsx document that is mishandled when read by xlsx.js. SheetJS y SheetJS Pro hasta la versión 0.16.9 permiten a los atacantes provocar una denegación de servicio (consumo de CPU) a través de un documento .xlsx manipulado incorrectamente cuando es leído por xlsx.js • https://floqast.com/engineering-blog/post/fuzzing-and-parsing-securely • CWE-400: Uncontrolled Resource Consumption •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2021-32013
https://notcve.org/view.php?id=CVE-2021-32013
19 Jul 2021 — SheetJS and SheetJS Pro through 0.16.9 allows attackers to cause a denial of service (memory consumption) via a crafted .xlsx document that is mishandled when read by xlsx.js (issue 2 of 2). SheetJS y SheetJS Pro hasta la versión 0.16.9 permiten a los atacantes provocar una denegación de servicio (consumo de memoria) a través de un documento .xlsx manipulado incorrectamente al ser leído por xlsx.js (problema 2 de 2) • https://floqast.com/engineering-blog/post/fuzzing-and-parsing-securely • CWE-400: Uncontrolled Resource Consumption •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2021-32012
https://notcve.org/view.php?id=CVE-2021-32012
19 Jul 2021 — SheetJS and SheetJS Pro through 0.16.9 allows attackers to cause a denial of service (memory consumption) via a crafted .xlsx document that is mishandled when read by xlsx.js (issue 1 of 2). SheetJS y SheetJS Pro hasta la versión 0.16.9 permiten a los atacantes provocar una denegación de servicio (consumo de memoria) a través de un documento .xlsx manipulado incorrectamente al ser leído por xlsx.js (problema 1 de 2) • https://floqast.com/engineering-blog/post/fuzzing-and-parsing-securely • CWE-400: Uncontrolled Resource Consumption •