Vulnerabilities > Mendix > Saml > 2.1.2

DATE CVE VULNERABILITY TITLE RISK
2022-09-13 CVE-2022-37011 Authentication Bypass by Capture-replay vulnerability in Mendix Saml
A vulnerability has been identified in Mendix SAML (Mendix 7 compatible) (All versions < V1.17.0), Mendix SAML (Mendix 8 compatible) (All versions < V2.3.0), Mendix SAML (Mendix 9 compatible, New Track) (All versions < V3.3.1), Mendix SAML (Mendix 9 compatible, Upgrade Track) (All versions < V3.3.0).
network
low complexity
mendix CWE-294
critical
 9.8
9.8
2022-06-14 CVE-2022-32285 XXE vulnerability in Mendix Saml
A vulnerability has been identified in Mendix SAML Module (Mendix 7 compatible) (All versions < V1.16.6), Mendix SAML Module (Mendix 8 compatible) (All versions < V2.2.2), Mendix SAML Module (Mendix 9 compatible) (All versions < V3.2.3).
network
mendix CWE-611
4.3
4.3
2022-06-14 CVE-2022-32286 Cross-site Scripting vulnerability in Mendix Saml
A vulnerability has been identified in Mendix SAML Module (Mendix 7 compatible) (All versions < V1.16.6), Mendix SAML Module (Mendix 8 compatible) (All versions < V2.2.2), Mendix SAML Module (Mendix 9 compatible) (All versions < V3.2.3).
network
mendix CWE-79
4.3
4.3