CSV/DDE Injection Vulnerability in SEP (Mac client)

CSV/DDE Injection Vulnerability in SEP (Mac client)

CVE-2018-12244 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

SEP (Mac client) prior to and including 12.1 RU6 MP9 and prior to 14.2 RU1 may be susceptible to a CSV/DDE injection (also known as formula injection) vulnerability, which is a type of issue whereby an application or website allows untrusted input into CSV files.

Learn more about our Web App Pen Testing.