A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.34), Mendix Applications using Mendix 8 (All versions < V8.18.23), Mendix Applications using Mendix 9 (All versions < V9.22.0), Mendix Applications using Mendix 9 (V9.12) (All versions < V9.12.10), Mendix Applications using Mendix 9 (V9.18) (All versions < V9.18.4), Mendix Applications using Mendix 9 (V9.6) (All versions < V9.6.15). Some of the Mendix runtime API’s allow attackers to bypass XPath constraints and retrieve information using XPath queries that trigger errors.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: siemens

Published: 2023-02-14T10:36:23.615Z

Updated: 2024-08-02T10:42:27.044Z

Reserved: 2023-01-18T10:28:31.589Z

Link: CVE-2023-23835

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-02-14T11:15:14.687

Modified: 2024-11-21T07:46:55.280

Link: CVE-2023-23835

cve-icon Redhat

No data.