QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2021-42015

Back to search

CVE-2021-42015

Published: Nov 9, 2021

Modified: Aug 4, 2024

PUBLISHED

Description

A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.26), Mendix Applications using Mendix 8 (All versions < V8.18.12), Mendix Applications using Mendix 9 (All versions < V9.6.1). Applications built with affected versions of Mendix Studio Pro do not prevent file documents from being cached when files are opened or downloaded using a browser. This could allow a local attacker to read those documents by exploring the browser cache.

VendorProductVersions

Siemens

Mendix Applications using Mendix 7

affected
All versions < V7.23.26

Siemens

Mendix Applications using Mendix 8

affected
All versions < V8.18.12

Siemens

Mendix Applications using Mendix 9

affected
All versions < V9.6.1

Weaknesses (CWE)

CWE-525

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now