cvedb.io
CVE-2023-27464
MEDIUM · CVSS 5.3
EPSS exploitation probability: 0%
Published 2023-04-11T10:15:18.223 · Last modified 2026-06-17T05:45:16.170

Summary

A vulnerability has been identified in Mendix Forgot Password (Mendix 7 compatible) (All versions < V3.7.1), Mendix Forgot Password (Mendix 8 compatible) (All versions < V4.1.1), Mendix Forgot Password (Mendix 9 compatible) (All versions < V5.1.1). The affected versions of the module contain an observable response discrepancy issue that could allow an attacker to retrieve sensitive information.

Affected products

mendix — forgot_password

Does this affect you?

Add your gear to cvedb and we'll alert you only when mendix ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.