all InfoSec news
SSA-210822 V1.0: Improper Access Control Vulnerability in Mendix Workflow Commons Module
Siemens ProductCERT Security Advisories cert-portal.siemens.com
The Mendix Workflow Commons module improperly handles access control for some module entities. This could allow authenticated remote attackers to read or delete sensitive information.
Mendix has released an update for the Mendix Workflow Commons module and recommends to update to the latest version.
Note that the fix might slightly impact the module’s functionality in specific cases.
access access control attackers commons control delete entities fix information latest sensitive sensitive information ssa update version vulnerability workflow