Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Siemens | Mendix Applications using Mendix 7 | unknown |
|
||||||
| Siemens | Mendix Applications using Mendix 8 | unknown |
|
||||||
| Siemens | Mendix Applications using Mendix 9 | unknown |
|
||||||
| Siemens | Mendix Applications using Mendix 9 (V9.12) | unknown |
|
||||||
| Siemens | Mendix Applications using Mendix 9 (V9.18) | unknown |
|
||||||
| Siemens | Mendix Applications using Mendix 9 (V9.6) | unknown |
|
Configuration 1 [-]
|
No data.
No data available yet.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2023-27921 | A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.34), Mendix Applications using Mendix 8 (All versions < V8.18.23), Mendix Applications using Mendix 9 (All versions < V9.22.0), Mendix Applications using Mendix 9 (V9.12) (All versions < V9.12.10), Mendix Applications using Mendix 9 (V9.18) (All versions < V9.18.4), Mendix Applications using Mendix 9 (V9.6) (All versions < V9.6.15). Some of the Mendix runtime API’s allow attackers to bypass XPath constraints and retrieve information using XPath queries that trigger errors. |
Thu, 20 Mar 2025 17:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: siemens
Published:
Updated: 2025-03-20T16:25:54.732Z
Reserved: 2023-01-18T10:28:31.589Z
Link: CVE-2023-23835
Vulnrichment
Updated: 2024-08-02T10:42:27.044Z
NVD
Status : Modified
Published: 2023-02-14T11:15:14.687
Modified: 2024-11-21T07:46:55.280
Link: CVE-2023-23835
Redhat
No data.
OpenCVE Enrichment
No data.