CVE-2025-52386

Publication date

2025-08-13 00:00:00

Family

mitre

State

PUBLISHED

Description

CycloneDX Sunshine v0.9 is vulnerable to CSV Formula Injection via a crafted JSON file