Unrated severityNVD Advisory· Published Apr 11, 2023· Updated Feb 7, 2025
CVE-2023-27464
CVE-2023-27464
Description
A vulnerability has been identified in Mendix Forgot Password (Mendix 7 compatible) (All versions < V3.7.1), Mendix Forgot Password (Mendix 8 compatible) (All versions < V4.1.1), Mendix Forgot Password (Mendix 9 compatible) (All versions < V5.1.1). The affected versions of the module contain an observable response discrepancy issue that could allow an attacker to retrieve sensitive information.
Affected products
4< V3.7.1 (Mendix 7), < V4.1.1 (Mendix 8), < V5.1.1 (Mendix 9)+ 3 more
- (no CPE)range: < V3.7.1 (Mendix 7), < V4.1.1 (Mendix 8), < V5.1.1 (Mendix 9)
- (no CPE)range: All versions < V3.7.1
- (no CPE)range: All versions < V4.1.1
- (no CPE)range: All versions < V5.1.1
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.