CVE-2025-1421 Formula injection in a CSV file in Proget MDM

May 21, 2025 invoker category_cve

CVE Details

Basic Information

Title CVE-2025-1421 Formula injection in a CSV file in Proget MDM
Type cve
Published 2025-05-21T13:04:37
Last Seen 2025-05-21T14:29:40

CVSS Information

Base Score 0.0 ()
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact

AI Analysis

AI Description The vulnerability CVE-2025-1421 involves formula injection in a CSV file within Proget MDM. Data provided during device activation is stored in a database and can be downloaded as a CSV file by high-privileged users. Opening this file in certain tools may corrupt the user’s PC. The CVSS score is 2.4, indicating a low severity.
AI Severity Low
Vendor Proget
Product Proget MDM
Affected Version

Additional Information

CVE List CVE-2025-1421
CWE List CWE-1236
Bulletin Family cve

Description

Data provided in a request performed to the server while activating a new device are put in a database. Other high privileged users might download this data as a CSV file and corrupt their PC by opening it in a tool such as…

CVSS Score Summary

Base Score: %!f(string=#) ()

View Full CVE Details

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.