2 matches found
CVE-2022-26314
CVE-2022-26314 affects the Mendix Forgot Password Appstore module: affected versions are Mendix Forgot Password Appstore v3.3.0–v3.5.1 and Mendix 7 compatible versions prior to v3.2.2. The root cause is improper restriction of excessive authentication attempts, enabling unauthenticated brute-forc...
CVE-2022-26314
A vulnerability has been identified in Mendix Forgot Password Appstore module All versions = V3.3.0 V3.5.1, Mendix Forgot Password Appstore module Mendix 7 compatible All versions V3.2.2. Initial passwords are generated in an insecure manner. This could allow an unauthenticated remote attacker to...