Security Advisory

CVE-2021-42015

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-11-09 11:32:14

Last updated 2024-08-04 03:22:25

Assigner siemens

State PUBLISHED

Description

A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.26), Mendix Applications using Mendix 8 (All versions < V8.18.12), Mendix Applications using Mendix 9 (All versions < V9.6.1). Applications built with affected versions of Mendix Studio Pro do not prevent file documents from being cached when files are opened or downloaded using a browser. This could allow a local attacker to read those documents by exploring the browser cache.

← Browse all CVEs View on cve.org ↗