Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 9:59 p.m.8 views

CVE-2022-44457

A vulnerability has been identified in Mendix SAML Mendix 7 compatible All versions = V1.17.0 = V2.3.0 = V3.3.1 = V3.3.0 V3.3.4. Affected versions of the module insufficiently protect from packet capture replay, only when the not recommended, non default configuration option 'Allow Idp Initiated...

9.8CVSS6.4AI score0.01046EPSS
Exploits0References1
Circl
Circl
added 2022/11/08 2:35 p.m.4 views

CVE-2022-44457

creationtimestamp| type| source ---|---|--- 2022-11-08 14:35:16+00:00| seen| https://t.me/cibsecurity/52627...

9.8CVSS8.7AI score0.007EPSS
Exploits0References1
OSV
OSV
added 2022/11/08 11:15 a.m.3 views

CVE-2022-44457

A vulnerability has been identified in Mendix SAML Mendix 7 compatible All versions = V1.17.0 = V2.3.0 = V3.3.1 = V3.3.0 V3.3.4. Affected versions of the module insufficiently protect from packet capture replay, only when the not recommended, non default configuration option 'Allow Idp Initiated...

9.8CVSS5.7AI score0.007EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/11/08 12:0 a.m.8 views

CVE-2022-44457

A vulnerability has been identified in Mendix SAML Mendix 7 compatible All versions = V1.17.0 = V2.3.0 = V3.3.1 = V3.3.0 V3.3.4. Affected versions of the module insufficiently protect from packet capture replay, only when the not recommended, non default configuration option 'Allow Idp Initiated...

6.8AI score0.007EPSS
Exploits0References1
CVE
CVE
added 2022/11/08 12:0 a.m.59 views

CVE-2022-44457

CVE-2022-44457 affects Mendix SAML modules across Mendix 7/8/9 tracks. The issue arises when the non-default configuration option Allow Idp Initiated Authentication is enabled, yielding insufficient protection against packet capture replay. The record notes this as an incomplete fix for CVE-2022-...

9.8CVSS9.3AI score0.007EPSS
Exploits0References1Affected Software1
ICS
ICS
added 2022/09/13 12:0 a.m.50 views

Siemens Mendix SAML Module

1. EXECUTIVE SUMMARY CVSS v3 7.4 ATTENTION: Exploitable remotely Vendor: Siemens Equipment: Mendix SAML Module Vulnerability: Authentication Bypass by Capture-replay 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled ICSA- ICSA-22-258-04 Siemens Mendix SAML...

9.8CVSS10AI score0.01046EPSS
Exploits0References11
Rows per page
Query Builder