CVE-2023-29129
CVSS Score of 10 (low)
Details
Summary
CVE-2023-29129 is a vulnerability that affects multiple versions of Mendix SAML, including versions V1.17.3 to V1.18.0, V2.3.0 to V2.4.0, and V3.1.8 to V3.6.0, among others (with specific compatibility tracks mentioned). The vulnerability allows unauthenticated remote attackers to bypass authentication and gain access to the application due to insufficient verification of SAML assertions. This poses a high risk to organizations as it could lead to unauthorized access and potential data breaches. To remediate the vulnerability, affected organizations should update their Mendix SAML module to a version that includes a complete fix for CVE-2023-25957 in the non-default configuration mentioned in the analysis description of this CVE entry
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions