CVE-2021-25672

Summary

A vulnerability has been identified in Mendix Forgot Password Appstore module (All Versions < V3.2.1). The Forgot Password Marketplace module does not properly control access. An attacker could take over accounts.

Affected Software

VendorProductVersion RangeStatus
SiemensMendix Forgot Password Appstore moduleAll Versions < V3.2.1affected

Weaknesses

  • CWE-284: CWE-284: Improper Access Control

ADP Enrichment

CVE Program Container

Additional References

References