Siemens Mendix Applications Using Mendix 7 vulnerabilities

9 known vulnerabilities affecting siemens/mendix_applications_using_mendix_7.

Total CVEs
9
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH5MEDIUM4

Vulnerabilities

Page 1 of 1
CVE-2023-45794HIGHCVSS 8.1vAll versions < V7.23.372023-11-14
CVE-2023-45794 [MEDIUM] CWE-294 CVE-2023-45794: A vulnerability has been identified in Mendix Applications using Mendix 10 (All versions < V10.4.0), A vulnerability has been identified in Mendix Applications using Mendix 10 (All versions < V10.4.0), Mendix Applications using Mendix 7 (All versions < V7.23.37), Mendix Applications using Mendix 8 (All versions < V8.18.27), Mendix Applications using Mendix 9 (All versions < V9.24.10). A capture-replay flaw in the platform could have an impact to ap
cvelistv5nvd
CVE-2023-23835HIGHCVSS 7.5vAll versions < V7.23.342023-02-14
CVE-2023-23835 [MEDIUM] CWE-284 CVE-2023-23835: A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.34), A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.34), Mendix Applications using Mendix 8 (All versions < V8.18.23), Mendix Applications using Mendix 9 (All versions < V9.22.0), Mendix Applications using Mendix 9 (V9.12) (All versions < V9.12.10), Mendix Applications using Mendix 9 (V9.18) (All versions
cvelistv5nvd
CVE-2022-31257HIGHCVSS 7.5vAll versions < V7.23.312022-07-12
CVE-2022-31257 [HIGH] CWE-284 CVE-2022-31257: A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.31), A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.31), Mendix Applications using Mendix 8 (All versions < V8.18.18), Mendix Applications using Mendix 9 (All versions < V9.14.0), Mendix Applications using Mendix 9 (V9.12) (All versions < V9.12.2), Mendix Applications using Mendix 9 (V9.6) (All versions < V9
cvelistv5nvd
CVE-2022-27241HIGHCVSS 7.5vAll versions < V7.23.312022-04-12
CVE-2022-27241 [HIGH] CWE-200 CVE-2022-27241: A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.31), A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.31), Mendix Applications using Mendix 8 (All versions < V8.18.18), Mendix Applications using Mendix 9 (All versions < V9.11), Mendix Applications using Mendix 9 (V9.6) (All versions < V9.6.12). Applications built with an affected system publicly expose the
cvelistv5nvd
CVE-2022-25650MEDIUMCVSS 6.5vAll versions < V7.23.272022-04-12
CVE-2022-25650 [MEDIUM] CWE-284 CVE-2022-25650: A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.27), A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.27), Mendix Applications using Mendix 8 (All versions < V8.18.14), Mendix Applications using Mendix 9 (All versions < V9.12.0), Mendix Applications using Mendix 9 (V9.6) (All versions < V9.6.3). When querying the database, it is possible to sort the resul
cvelistv5nvd
CVE-2022-26317MEDIUMCVSS 6.5vAll versions < V7.23.292022-03-08
CVE-2022-26317 [MEDIUM] CWE-284 CVE-2022-26317: A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.29). A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.29). When returning the result of a completed Microflow execution call the affected framework does not correctly verify, if the request was initially made by the user requesting the result. Together with predictable identifiers for Microflow execution cal
cvelistv5nvd
CVE-2021-42015MEDIUMCVSS 5.5vAll versions < V7.23.262021-11-09
CVE-2021-42015 [MEDIUM] CWE-525 CVE-2021-42015: A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.26), A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.26), Mendix Applications using Mendix 8 (All versions < V8.18.12), Mendix Applications using Mendix 9 (All versions < V9.6.1). Applications built with affected versions of Mendix Studio Pro do not prevent file documents from being cached when files are op
cvelistv5nvd
CVE-2021-33718MEDIUMCVSS 5.3vAll versions < V7.23.222021-07-13
CVE-2021-33718 [MEDIUM] CWE-863 CVE-2021-33718: A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.22), A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.22), Mendix Applications using Mendix 8 (All versions < V8.18.7), Mendix Applications using Mendix 9 (All versions < V9.3.0). Write access checks of attributes of an object could be bypassed, if user has a write permissions to the first attribute of this
cvelistv5nvd
CVE-2021-27394HIGHCVSS 8.8vAll versions < V7.23.192021-04-16
CVE-2021-27394 [HIGH] CWE-269 CVE-2021-27394: A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.19), A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.19), Mendix Applications using Mendix 8 (All versions < V8.17.0), Mendix Applications using Mendix 8 (V8.12) (All versions < V8.12.5), Mendix Applications using Mendix 8 (V8.6) (All versions < V8.6.9), Mendix Applications using Mendix 9 (All versions < V9.0
cvelistv5nvd