CVE-2022-37011

Description

A vulnerability has been identified in Mendix SAML (Mendix 7 compatible) (All versions < V1.17.0), Mendix SAML (Mendix 8 compatible) (All versions < V2.3.0), Mendix SAML (Mendix 9 compatible, New Track) (All versions < V3.3.1), Mendix SAML (Mendix 9 compatible, Upgrade Track) (All versions < V3.3.0). Affected versions of the module insufficiently protect from packet capture replay. This could allow unauthorized remote attackers to bypass authentication and get access to the application. For compatibility reasons, fix versions still contain this issue, but only when the not recommended, non default configuration option `'Allow Idp Initiated Authentication'` is enabled.

References

Link	Tags
https://cert-portal.siemens.com/productcert/pdf/ssa-638652.pdf	third party advisory patch

Frequently Asked Questions

What is the severity of CVE-2022-37011?: CVE-2022-37011 has been scored as a critical severity vulnerability.
How to fix CVE-2022-37011?: To fix CVE-2022-37011, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2022-37011 being actively exploited in the wild?: As for now, there are no information to confirm that CVE-2022-37011 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2022-37011?: CVE-2022-37011 affects Siemens Mendix SAML (Mendix 7 compatible), Siemens Mendix SAML (Mendix 8 compatible), Siemens Mendix SAML (Mendix 9 compatible, New Track), Siemens Mendix SAML (Mendix 9 compatible, Upgrade Track).

Description

Category

CWE-294 – Authentication Bypass by Capture-replay

References

Frequently Asked Questions