CVE-2022-46823 Information

Description

A vulnerability has been identified in Mendix SAML (Mendix 8 compatible) (All versions >= V2.3.0 < V2.3.4) Mendix SAML (Mendix 9 compatible New Track) (All versions >= V3.3.0 < V3.3.9) Mendix SAML (Mendix 9 compatible Upgrade Track) (All versions >= V3.3.0 < V3.3.8). The affected module is vulnerable to reflected cross-site scripting (XSS) attacks. This could allow an attacker to extract sensitive information by tricking users into accessing a malicious link.

Reference

https://cert-portal.siemens.com/productcert/pdf/ssa-496604.pdf