cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-43623,https://securityvulnerability.io/vulnerability/CVE-2023-43623,User Enumeration Vulnerability in Mendix Forgot Password Modules,"A security issue has been discovered in the Mendix Forgot Password modules across multiple compatible versions, where applications allow for user enumeration due to distinguishable responses. This vulnerability can be exploited by unauthenticated remote attackers, enabling them to ascertain the validity of a username. Once valid users are identified, the attackers can leverage this information to execute brute force attacks, further compromising user accounts and potentially gaining unauthorized access.",Siemens,"Mendix Forgot Password (mendix 10 Compatible),Mendix Forgot Password (mendix 7 Compatible),Mendix Forgot Password (mendix 8 Compatible),Mendix Forgot Password (mendix 9 Compatible)",5.3,MEDIUM,0.0004799999878741801,false,,false,false,false,,,false,false,,2023-10-10T11:15:00.000Z,0