A vulnerability has been identified in Mendix Forgot Password (Mendix 7 compatible) (All versions < V3.7.1), Mendix Forgot Password (Mendix 8 compatible) (All versions < V4.1.1), Mendix Forgot Password (Mendix 9 compatible) (All versions < V5.1.1). The affected versions of the module contain an observable response discrepancy issue that could allow an attacker to retrieve sensitive information.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: siemens

Published: 2023-04-11T09:03:03.269Z

Updated: 2024-08-02T12:09:43.472Z

Reserved: 2023-03-01T17:29:31.289Z

Link: CVE-2023-27464

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-04-11T10:15:18.223

Modified: 2024-11-21T07:52:57.770

Link: CVE-2023-27464

cve-icon Redhat

No data.