CVE-2025-30280

🗓️ 08 Apr 2025 08:22:31Reported by siemensType

Vulnerability in Mendix Runtime allows remote attackers to enumerate entities and attributes.

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2025-30280	8 Apr 202513:59	–	circl
CNNVD	Siemens Mendix Runtime 安全漏洞	8 Apr 202500:00	–	cnnvd
Cvelist	CVE-2025-30280	8 Apr 202508:22	–	cvelist
EUVD	EUVD-2025-10338	3 Oct 202520:07	–	euvd
ICS	Siemens Mendix Runtime	8 Apr 202500:00	–	ics
NCSC	Vulnerabilities fixed in Siemens products	8 Apr 202513:57	–	ncsc
NVD	CVE-2025-30280	8 Apr 202509:15	–	nvd
Positive Technologies	PT-2025-15408 · Mendix · Mendix Runtime V8 +2	8 Apr 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-30280	10 Apr 202509:12	–	redhatcve
Vulnrichment	CVE-2025-30280	8 Apr 202508:22	–	vulnrichment

[
  {
    "vendor": "Siemens",
    "product": "Mendix Runtime V10",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "V10.21.0",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "Mendix Runtime V10.12",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "V10.12.16",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "Mendix Runtime V10.18",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "V10.18.5",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "Mendix Runtime V10.6",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "V10.6.22",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "Mendix Runtime V8",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "V8.18.35",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "Mendix Runtime V9",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "V9.24.34",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Source	Link
cert-portal	www.cert-portal.siemens.com/productcert/html/ssa-874353.html

15 Apr 2026 00:35Current

5.2Medium risk

Vulners AI Score5.2

CVSS 3.15.3

CVSS 46.9

EPSS0.004

SSVC

CWE-204