VYPR
Medium severity5.4NVD Advisory· Published Jun 30, 2026· Updated Jul 7, 2026

CVE-2026-48192

CVE-2026-48192

Description

Affected versions of Mendix Studio Pro do not properly validate or sanitize project files processed during the build pipeline. This could allow an attacker who tricks a user into opening and running a specially crafted malicious project locally on their system to execute arbitrary code in the context of that user.

Affected products

1

Patches

Vulnerability mechanics

News mentions

1