cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2023-29129,https://securityvulnerability.io/vulnerability/CVE-2023-29129,Insufficient SAML Assertion Verification in Mendix Products,"A vulnerability has been identified in various versions of Mendix SAML products, where insufficient verification of SAML assertions may allow unauthenticated remote attackers to bypass authentication mechanisms. This may result in unauthorized access to applications relying on these SAML integrations. This issue also reflects an incomplete fix for a previous vulnerability, necessitating immediate attention to ensure the security of applications utilizing these specific Mendix SAML versions.",Siemens,"Mendix SAML (Mendix 7 compatible),Mendix SAML (Mendix 8 compatible),Mendix SAML (Mendix 9 latest compatible, New Track),Mendix SAML (Mendix 9 latest compatible, Upgrade Track),Mendix SAML (Mendix 9.12/9.18 compatible, New Track),Mendix SAML (Mendix 9.12/9.18 compatible, Upgrade Track),Mendix SAML (Mendix 9.6 compatible, New Track),Mendix SAML (Mendix 9.6 compatible, Upgrade Track)",9.8,CRITICAL,0.0033400000538676977,false,,false,false,false,,false,false,2023-06-13T09:15:00.000Z,0
CVE-2023-25957,https://securityvulnerability.io/vulnerability/CVE-2023-25957,Vulnerability in Mendix SAML for Multiple Version Compatibility,"A vulnerability has been discovered in the Mendix SAML module that affects various versions. The issue arises from insufficient validation of SAML assertions, enabling unauthenticated remote attackers to potentially bypass authentication mechanisms. This gap allows unauthorized access to applications leveraging these versions of Mendix. Notably, affected versions include various configurations that, for compatibility reasons, may still expose this vulnerability if the 'Use Encryption' default configuration option is disabled.",Siemens,"Mendix SAML (Mendix 7 compatible),Mendix SAML (Mendix 8 compatible),Mendix SAML (Mendix 9 latest compatible, New Track),Mendix SAML (Mendix 9 latest compatible, Upgrade Track),Mendix SAML (Mendix 9.6 compatible, New Track),Mendix SAML (Mendix 9.6 compatible, Upgrade Track)",7.5,HIGH,0.0012000000569969416,false,,false,false,false,,false,false,2023-03-14T10:15:00.000Z,0