Primary

Context

Mendix LDAP Module LDAP Injection Vulnerability

Vulnerability

A vulnerability exists in the Mendix LDAP module, affecting all versions prior to 1.1.2, that allows for LDAP injection. This vulnerability could enable an unauthenticated remote attacker to bypass username verification.

Impact

Exploitation of this vulnerability could lead to unauthorized bypassing of username verification, potentially allowing for further attacks or unauthorized access.

Remediation

Users are advised to update to version 1.1.2 or later. The latest version can be downloaded from the Mendix Marketplace.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.3

exploitability

6.2

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.3

exploitability

6.2

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Mendix LDAP Module LDAP Injection Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating