Vulnerabilities > CVE-2021-33718 - Unspecified vulnerability in Siemens Mendix 7.0.0/8.0.0/9.0.0

047910
CVSS 5.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
HIGH
Privileges required
LOW
Confidentiality impact
NONE
Integrity impact
HIGH
Availability impact
NONE
network
high complexity
siemens

Summary

A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.22), Mendix Applications using Mendix 8 (All versions < V8.18.7), Mendix Applications using Mendix 9 (All versions < V9.3.0). Write access checks of attributes of an object could be bypassed, if user has a write permissions to the first attribute of this object.

Vulnerable Configurations

Part Description Count
Application
Siemens
3