A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.19), Mendix Applications using Mendix 8 (All versions < V8.17.0), Mendix Applications using Mendix 8 (V8.12) (All versions < V8.12.5), Mendix Applications using Mendix 8 (V8.6) (All versions < V8.6.9), Mendix Applications using Mendix 9 (All versions < V9.0.5). Authenticated, non-administrative users could modify their privileges by manipulating the user role under certain circumstances, allowing them to gain administrative privileges.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HMendix
APPMendix7.0.2 – 7.23.19 (bez)8.0.0 – 8.17.0 (bez)9.0.0 – 9.0.5 (bez)8.6.0 – 8.6.9 (bez)8.12.0 – 8.12.5 (bez)
Related vulnerabilities
A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.31), Mendix Ap...
A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.31), Mendix Ap...
A vulnerability has been identified in Mendix Runtime V10 (All versions < V10.16.0 only if the basic authentic...
A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.34), Mendix Ap...
A vulnerability has been identified in Mendix Applications using Mendix 9 (All versions >= V9.11 < V9.15), Men...