Lucene search
China National Vulnerability DatabaseCNVD-2023-43554HistoryApr 16, 2023 - 12:00 a.m.
Siemens Mendix Forgot Password Module Information Disclosure Vulnerability
2023-04-1600:00:00
China National Vulnerability Database
www.cnvd.org.cn
2
siemens
mendix
low-code
application development
testing
deployment
iteration
information disclosure
vulnerability
observable response difference
sensitive information
attacker
cnvd
0.0005 Low
EPSS
Percentile
18.2%
Siemens Mendix is a low-code application development platform from Siemens. The platform provides application development, testing, deployment and iteration. An information disclosure vulnerability exists in the Siemens Mendix Forgot Password module. The vulnerability stems from the fact that the affected version of the module contains an observable response difference that can be exploited by an attacker to obtain sensitive information.
Related
cvelist
cvelist
CVE-2023-27464
2023-04-11 09:03:03
nvd
nvd
CVE-2023-27464
2023-04-11 10:15:18
cve
cve
CVE-2023-27464
2023-04-11 10:15:18
prion
prion
Default credentials
2023-04-11 10:15:00
ics
ics
Siemens Mendix Forgot Password Module
2023-04-13 12:00:00