Improper Access Control in Mendix Email Connector (All versions < V2.0.0)

Improper Access Control in Mendix Email Connector (All versions < V2.0.0)

CVE-2022-45936 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

A vulnerability has been identified in Mendix Email Connector (All versions < V2.0.0). Affected versions of the module improperly handle access control for some module entities. This could allow authenticated remote attackers to read and manipulate sensitive information.

Learn more about our Web Application Penetration Testing UK.