all InfoSec news
SSA-252808 V1.0: XPath Constraint Vulnerability in Mendix Runtime
Feb. 14, 2023, midnight |
Siemens ProductCERT Security Advisories cert-portal.siemens.com
Mendix applications contain an improper access control vulnerability that could allow an attacker to bypass XPath constraints and retrieve information using XPath queries that trigger errors.
Siemens has released updates for the affected products and recommends to update to the latest versions.
access access control applications bypass constraints control errors information latest products runtime siemens ssa trigger update updates vulnerability
More from cert-portal.siemens.com / Siemens ProductCERT Security Advisories
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Physical Security Operations Center - Supervisor
@ Equifax | USA-GA-Alpharetta-JVW3
Network Cybersecurity Engineer - Overland Park, KS Hybrid
@ Black & Veatch | Overland Park, KS, US
Cloud Security Engineer
@ Point72 | United States
Technical Program Manager, Security and Compliance, Cloud Compute
@ Google | New York City, USA; Kirkland, WA, USA
EWT Security | Vulnerability Management Analyst - AM
@ KPMG India | Gurgaon, Haryana, India