CVE-2024-56841
CVSS 3.1 Score 7.4 of 10 (high)
Details
Published Jan 14, 2025
CWE ID 90
Summary
CVE-2024-56841 is a newly discovered vulnerability affecting Mendix LDAP modules with versions below V1.1.2. This issue permits unauthenticated remote attackers to perform LDAP injection, effectively bypassing username verification. Successful exploitation could lead to unauthorized access to protected systems or data. The vulnerability poses a significant risk as it allows attackers to gain access without proper authentication. It is strongly recommended that affected organizations update their Mendix LDAP modules to the latest version to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.