1
0
1
0
1
0
1
0
0
1
1
0
1
0
VulnHub

AI-Powered Cybersecurity Intelligence

Siemens Mendix SAML Module

Source: All CISA Advisories | Added:

The Siemens Mendix SAML Module has a critical vulnerability due to improper verification of cryptographic signatures, allowing unauthenticated remote attackers to hijack accounts in specific SSO configurations. Users are advised to update to the latest versions to mitigate the risk associated with this vulnerability.

Impact: Siemens Mendix SAML (Mendix 9.24 compatible), Siemens Mendix SAML (Mendix 10.12 compatible), Siemens Mendix SAML (Mendix 10.21 compatible)

In the Wild: No

Age: Newly disclosed

Remediation: Update to V3.6.21 or later for Mendix 9.24, V4.0.3 or later for Mendix 10.12, and V4.1.2 or later for Mendix 10.21. Ensure UseEncryption is enabled.

Phishing CVE Vulnerability Update
Read Full Original Article →