CVE-2010-20120

UNKNOWN 0.0

Maple <= v13 Maplet File Creation and Command Execution

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Maple versions up to and including 13's Maplet framework allows embedded commands to be executed automatically when a .maplet file is opened. This behavior bypasses standard security restrictions that normally prevent code execution in regular Maple worksheets. The vulnerability enables attackers to craft malicious .maplet files that execute arbitrary code without user interaction.

CWE	CWE-94
Vendor	maplesoft
Product	maple
Published	Aug 21, 2025
Last Updated	Apr 7, 2026

Stay Ahead of the Next One

Get instant alerts for maplesoft maple

Be the first to know when new unknown vulnerabilities affecting maplesoft maple are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Maplesoft / Maple

* ≤ 13

References

NVD ↗ CVE.org ↗ EPSS Data ↗

maplesoft.com: https://www.maplesoft.com/products/maple/ exploit-db.com: https://www.exploit-db.com/exploits/16308 raw.githubusercontent.com: https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/multi/fileformat/maple_maplet.rb juniper.net: https://www.juniper.net/us/en/threatlabs/ips-signatures/detail.HTTP:MISC:MAPLE-MAPLET-CMD-EXEC.html vulncheck.com: https://www.vulncheck.com/advisories/maple-maplet-file-creation-command-execution

Credits

scriptjunkie