VYPR
Unrated severityNVD Advisory· Published Jul 13, 2021· Updated Aug 3, 2024

CVE-2021-33718

CVE-2021-33718

Description

A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.22), Mendix Applications using Mendix 8 (All versions < V8.18.7), Mendix Applications using Mendix 9 (All versions < V9.3.0). Write access checks of attributes of an object could be bypassed, if user has a write permissions to the first attribute of this object.

Affected products

4
  • Mendix/Mendixllm-fuzzy
    Range: <7.23.22, <8.18.7, <9.3.0
  • Siemens/Mendix Applications using Mendix 7v5
    Range: All versions < V7.23.22
  • Siemens/Mendix Applications using Mendix 8v5
    Range: All versions < V8.18.7
  • Siemens/Mendix Applications using Mendix 9v5
    Range: All versions < V9.3.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.