CVE-2024-50313

>= 8.0.0 and < 9.24.29

A vulnerability has been identified in Mendix Runtime V10 (All versions < V10.16.0 only if the basic authentication mechanism is u

5.3MEDIUM

CVE-2023-45794

>= 7.0.0 and < 7.23.37

A vulnerability has been identified in Mendix Applications using Mendix 10 (All versions < V10.4.0), Mendix Applications using Men

6.8MEDIUM

CVE-2023-43623

< 3.7.3

A vulnerability has been identified in Mendix Forgot Password (Mendix 10 compatible) (All versions < V5.4.0), Mendix Forgot Passwo

5.3MEDIUM

CVE-2023-29129

>= 1.16.4 and < 1.18.0

A vulnerability has been identified in Mendix SAML (Mendix 7 compatible) (All versions >= V1.17.3 < V1.18.0), Mendix SAML (Mendix

9.1CRITICAL

CVE-2023-27464

< 3.7.1

A vulnerability has been identified in Mendix Forgot Password (Mendix 7 compatible) (All versions < V3.7.1), Mendix Forgot Passwor

5.3MEDIUM

CVE-2023-25957

>= 1.16.4 and < 1.17.2

A vulnerability has been identified in Mendix SAML (Mendix 7 compatible) (All versions >= V1.16.4 < V1.17.3), Mendix SAML (Mendix

9.1CRITICAL

CVE-2023-23835

>= 7.0.2 and < 7.23.34

A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.34), Mendix Applications using Men

5.9MEDIUM

CVE-2022-46823

>= 2.3.0 and < 2.3.4

A vulnerability has been identified in Mendix SAML (Mendix 8 compatible) (All versions >= V2.3.0 < V2.3.4), Mendix SAML (Mendix 9

9.3CRITICAL

CVE-2022-44457

< 1.17.0

A vulnerability has been identified in Mendix SAML (Mendix 7 compatible) (All versions < V1.17.0), Mendix SAML (Mendix 7 compatibl

9.8CRITICAL

CVE-2022-37011

< 1.17.0

A vulnerability has been identified in Mendix SAML (Mendix 7 compatible) (All versions < V1.17.0), Mendix SAML (Mendix 8 compatibl

9.8CRITICAL

CVE-2022-34467

< 9.2.2

A vulnerability has been identified in Mendix Excel Importer Module (Mendix 8 compatible) (All versions < V9.2.2), Mendix Excel Im

6.5MEDIUM

CVE-2022-34466

>= 9.11.0 and < 9.15.0

A vulnerability has been identified in Mendix Applications using Mendix 9 (All versions >= V9.11 < V9.15), Mendix Applications usi

6.5MEDIUM

CVE-2022-31257

>= 7.0.0 and < 7.32.31

A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.31), Mendix Applications using Men

7.5HIGH

CVE-2022-32286

< 1.16.6

A vulnerability has been identified in Mendix SAML Module (Mendix 7 compatible) (All versions < V1.16.6), Mendix SAML Module (Mend

6.1MEDIUM

CVE-2022-32285

< 1.16.6

A vulnerability has been identified in Mendix SAML Module (Mendix 7 compatible) (All versions < V1.16.6), Mendix SAML Module (Mend

7.5HIGH

CVE-2022-27241

>= 7.0.0 and < 9.11.0

A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.31), Mendix Applications using Men

7.5HIGH

CVE-2022-25650

>= 7.0.0 and < 7.23.27

A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.27), Mendix Applications using Men

6.5MEDIUM

CVE-2022-26317

< 7.23.29

A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.29). When returning the result of

6.5MEDIUM

CVE-2022-26314

< 3.2.2

A vulnerability has been identified in Mendix Forgot Password Appstore module (All versions >= V3.3.0 < V3.5.1), Mendix Forgot Pas

9.8CRITICAL

CVE-2022-26313

>= 3.3.0 and < 3.5.1

A vulnerability has been identified in Mendix Forgot Password Appstore module (All versions >= V3.3.0 < V3.5.1). In certain config

9.8CRITICAL

CVE-2022-24309

< 7.23.29

A vulnerability has been identified in Mendix Runtime V7 (All versions < V7.23.29), Mendix Runtime V8 (All versions < V8.18.16), M

6.8MEDIUM

CVE-2021-45046

all versions

It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-default configurations. T

9.0CRITICAL

CVE-2021-44228

all versions

Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration

10.0CRITICAL

CVE-2021-42026

>= 8.0.0 and < 8.18.13

A vulnerability has been identified in Mendix Applications using Mendix 8 (All versions < V8.18.13), Mendix Applications using Men

4.3MEDIUM

CVE-2021-42025

>= 8.0.0 and < 8.18.13

A vulnerability has been identified in Mendix Applications using Mendix 8 (All versions < V8.18.13), Mendix Applications using Men

6.5MEDIUM

CVE-2021-42015

< 7.23.26

A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.26), Mendix Applications using Men

5.5MEDIUM

CVE-2021-33718

>= 7.0 and < 7.23.22

A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.22), Mendix Applications using Men

5.3MEDIUM

CVE-2021-33712

< 2.1.2

A vulnerability has been identified in Mendix SAML Module (All versions < V2.1.2). The configuration of the SAML module does not p

8.8HIGH

CVE-2021-31341

< 7.0.1

Uploading a table mapping using a manipulated XML file results in an exception that could expose information about the application

4.3MEDIUM

CVE-2021-31339

< 9.0.3

A vulnerability has been identified in Mendix Excel Importer Module (All versions < V9.0.3). Uploading a manipulated XML File resu

4.3MEDIUM

CVE-2021-27394

>= 7.0.2 and < 7.23.19

A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.19), Mendix Applications using Men

8.8HIGH

CVE-2021-25672

< 3.2.1

A vulnerability has been identified in Mendix Forgot Password Appstore module (All Versions < V3.2.1). The Forgot Password Marketp

8.8HIGH

CVE-2020-8160

<= 2.1.1

MendixSSO <= 2.1.1 contains endpoints that make use of the openid handler, which is suffering from a Cross-Site Scripting vulnerab

6.1MEDIUM

CVE-2019-12996

<= 7.23.5

In Mendix 7.23.5 and earlier, issue in XML import mappings allow DOCTYPE declarations in the XML input that is potentially unsafe.

5.3MEDIUM