all InfoSec news
SSA-496604 V1.0: Cross-Site Scripting Vulnerability in Mendix SAML Module
Siemens ProductCERT Security Advisories cert-portal.siemens.com
The Mendix SAML module is affected by a reflected cross-site scripting (XSS) vulnerability that could allow an attacker to extract sensitive information by tricking users into accessing a malicious link. Apps are only vulnerable in certain cases when non-default configuration is used.
Siemens has released updates for the affected products and recommends to update to the latest versions.
apps cases configuration cross-site default extract information latest link malicious non products saml scripting sensitive information siemens ssa update updates vulnerability vulnerable xss