Page 2 of 11 results (0.002 seconds)
CVSS: 8.8EPSS: 0%CPEs: 5EXPL: 0
CVSS: 8.8EPSS: 0%CPEs: 5EXPL: 0CVE-2021-27394
https://notcve.org/view.php?id=CVE-2021-27394
16 Apr 2021 — A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.19), Mendix Applications using Mendix 8 (All versions < V8.17.0), Mendix Applications using Mendix 8 (V8.12) (All versions < V8.12.5), Mendix Applications using Mendix 8 (V8.6) (All versions < V8.6.9), Mendix Applications using Mendix 9 (All versions < V9.0.5). Authenticated, non-administrative users could modify their privileges by manipulating the user role under certain circumstances, allowing them to gain adm... • https://cert-portal.siemens.com/productcert/pdf/ssa-875726.pdf • CWE-269: Improper Privilege Management •