We are using Aspose.Cells for .NET. Below are the details of the library:
• Name: Aspose.Cells for .NET
• Library URL: https://products.aspose.com/cells/net
But Digital security team has reported some vulnerabilities, Response is given below:
" Cisco disclosed lot of vulnerabilities in the Aspose API ( Just last month) . They are all remote code execution attacks (RCE).
They attacks were very interesting as well .However the usage of ASPOSE with respect to project is very important that need to be explained by the architects through threat-modeling .
The attack vector (AV) is network and Attack complexity (AC) is low – easily exploitable .
Please find the NVD details about the vulnerability
Please provide further details in same regard, whether these vulnerabilites are reported in Aspose.Cells? if yes, what could be the ETA for resolution.