CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

484 matches found

Positive Technologies•added 2022/09/13 12:0 a.m.•4 views

PT-2022-23756 · Mendix · Mendix Saml

Name of the Vulnerable Software and Affected Versions: Mendix SAML Mendix 7 compatible versions prior to V1.17.0 Mendix SAML Mendix 8 compatible versions prior to V2.3.0 Mendix SAML Mendix 9 compatible, New Track versions prior to V3.3.1 Mendix SAML Mendix 9 compatible, Upgrade Track versions pri...

9.8CVSS9.5AI score0.01018EPSS

Exploits0References3

CNVD•added 2022/07/15 12:0 a.m.•14 views

Siemens Mendix Expression Injection Vulnerability

Mendix is a high-productivity application platform that enables the building and continuous improvement of mobile and web applications at scale.Siemens Mendix is vulnerable to an expression injection vulnerability that could be exploited by an attacker to compromise sensitive information in a...

6.5CVSS2.7AI score0.00602EPSS

Exploits0References1

CNVD•added 2022/07/15 12:0 a.m.•13 views

Siemens Mendix Excel Importer Module XML实体扩展注入漏洞

The Mendix Excel Importer Module can import Excel data tables into Mendix applications. an XML entity extension injection vulnerability exists in the Siemens Mendix Excel Importer Module, which can be exploited by an attacker to compromise the availability of affected components...

6.5CVSS3AI score0.00661EPSS

Exploits0References1

CNVD•added 2022/07/14 12:0 a.m.•11 views

Siemens Mendix Access Control Error Vulnerability (CNVD-2022-51432)

Mendix is a high-productivity application platform that enables mobile and web applications to be built and continuously improved at scale. Siemens Mendix is vulnerable to an access control error that could be exploited by an attacker to set weak passwords...

7.5CVSS2.7AI score0.00674EPSS

Exploits0References1

BDU FSTEC•added 2022/07/13 12:0 a.m.•4 views

The vulnerability of the database of the Mendix software platform for deploying and testing software applications allows a perpetrator to disclose protected information.

The vulnerability of the software platform for deploying and testing Mendix application programs is related to configuration errors. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information...

4.9CVSS6.5AI score0.0063EPSS

Exploits0References2Affected Software1

BDU FSTEC•added 2022/07/13 12:0 a.m.•4 views

The vulnerability of the Mendix software platform for deploying and testing software applications allows a perpetrator to uncover the structure of the created project.

The vulnerability of the Mendix software deployment and application testing platform is related to insufficient protection of operational data. Exploiting this vulnerability could allow a malicious actor to disclose the structure of the created project...

5.3CVSS7.1AI score0.01257EPSS

Exploits0References2Affected Software1

ATTACKERKB•added 2022/07/12 10:15 a.m.•2 views

CVE-2022-34466

A vulnerability has been identified in Mendix Applications using Mendix 9 All versions = V9.11 V9.15, Mendix Applications using Mendix 9 V9.12 All versions V9.12.3. An expression injection vulnerability was discovered in the Workflow subsystem of Mendix Runtime, that can affect the running...

6.5CVSS5.8AI score0.00602EPSS

Exploits0References2

OSV•added 2022/07/12 10:15 a.m.•1 views

CVE-2022-34466

6.5CVSS6.5AI score

Exploits0References1

OSV•added 2022/07/12 10:15 a.m.•6 views

CVE-2022-34467

A vulnerability has been identified in Mendix Excel Importer Module Mendix 8 compatible All versions V9.2.2, Mendix Excel Importer Module Mendix 9 compatible All versions V10.1.2. The affected component is vulnerable to XML Entity Expansion Injection. An attacker may use this to compromise the...

6.5CVSS5.7AI score0.00661EPSS

Exploits0References1

ATTACKERKB•added 2022/07/12 10:15 a.m.•5 views

CVE-2022-34467

6.5CVSS5.8AI score0.00661EPSS

Exploits0References2

NVD•added 2022/07/12 10:15 a.m.•13 views

CVE-2022-34466

6.5CVSS0.00602EPSS

Exploits0References1

NVD•added 2022/07/12 10:15 a.m.•11 views

CVE-2022-34467

6.5CVSS0.00661EPSS

Exploits0References1

ATTACKERKB•added 2022/07/12 10:15 a.m.•6 views

CVE-2022-31257

A vulnerability has been identified in Mendix Applications using Mendix 7 All versions V7.23.31, Mendix Applications using Mendix 8 All versions V8.18.18, Mendix Applications using Mendix 9 All versions V9.14.0, Mendix Applications using Mendix 9 V9.12 All versions V9.12.2, Mendix Applications...

7.5CVSS6.9AI score0.00674EPSS

Exploits0References2

NVD•added 2022/07/12 10:15 a.m.•23 views

CVE-2022-31257

7.5CVSS0.00674EPSS

Exploits0References1

OSV•added 2022/07/12 10:15 a.m.•2 views

CVE-2022-31257

7.5CVSS5.7AI score0.00674EPSS

Exploits0References1

Prion•added 2022/07/12 10:15 a.m.•13 views

Code injection

3.5CVSS6.1AI score0.00602EPSS

Exploits0References1Affected Software1

Prion•added 2022/07/12 10:15 a.m.•11 views

Default credentials

5CVSS7.4AI score0.00674EPSS

Exploits0References1Affected Software1

Prion•added 2022/07/12 10:15 a.m.•21 views

Sql injection

4CVSS6.3AI score0.00661EPSS

Exploits0References1Affected Software1

Cvelist•added 2022/07/12 10:7 a.m.•16 views

CVE-2022-34467

6.5AI score0.00661EPSS

Exploits0References1

CVE•added 2022/07/12 10:7 a.m.•69 views

CVE-2022-34467

CVE-2022-34467 affects Siemens Mendix Excel Importer Module. The vulnerability is an XML Entity Expansion Injection in the Mendix Excel Importer Module (Mendix 8 compatible: all versions < v9.2.2; Mendix 9 compatible: all versions

6.5CVSS6.3AI score0.00661EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by