๐Ÿ” CVE Alert

CVE-2026-48192

MEDIUM 5.4
CVSS Score
5.4
EPSS Score
0.0%
EPSS Percentile
0th

A vulnerability has been identified in Mendix Studio Pro 10.11 (All versions), Mendix Studio Pro 10.12 (All versions), Mendix Studio Pro 10.13 (All versions), Mendix Studio Pro 10.14 (All versions), Mendix Studio Pro 10.15 (All versions), Mendix Studio Pro 10.16 (All versions), Mendix Studio Pro 10.17 (All versions), Mendix Studio Pro 10.18 (All versions), Mendix Studio Pro 10.19 (All versions), Mendix Studio Pro 10.20 (All versions), Mendix Studio Pro 10.21 (All versions), Mendix Studio Pro 10.22 (All versions), Mendix Studio Pro 10.23 (All versions), Mendix Studio Pro 10.24 (All versions < V10.24.21), Mendix Studio Pro 11.0 (All versions), Mendix Studio Pro 11.1 (All versions), Mendix Studio Pro 11.10 (All versions), Mendix Studio Pro 11.11 (All versions), Mendix Studio Pro 11.2 (All versions), Mendix Studio Pro 11.3 (All versions), Mendix Studio Pro 11.4 (All versions), Mendix Studio Pro 11.5 (All versions), Mendix Studio Pro 11.6 (All versions < V11.6.7), Mendix Studio Pro 11.7 (All versions), Mendix Studio Pro 11.8 (All versions), Mendix Studio Pro 11.9 (All versions). Affected versions of Mendix Studio Pro do not properly validate or sanitize project files processed during the build pipeline. This could allow an attacker who tricks a user into opening and running a specially crafted malicious project locally on their system to execute arbitrary code in the context of that user.

CWE CWE-94
Vendor siemens
Product mendix studio pro 10.11
Ecosystems
Industries
IndustrialManufacturing
Published Jun 30, 2026
Last Updated Jun 30, 2026
Stay Ahead of the Next One

Get instant alerts for siemens mendix studio pro 10.11

Be the first to know when new medium vulnerabilities affecting siemens mendix studio pro 10.11 are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:N/I:H/A:N
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability

Affected Versions

Siemens / Mendix Studio Pro 10.11
0 < *
Siemens / Mendix Studio Pro 10.12
0 < *
Siemens / Mendix Studio Pro 10.13
0 < *
Siemens / Mendix Studio Pro 10.14
0 < *
Siemens / Mendix Studio Pro 10.15
0 < *
Siemens / Mendix Studio Pro 10.16
0 < *
Siemens / Mendix Studio Pro 10.17
0 < *
Siemens / Mendix Studio Pro 10.18
0 < *
Siemens / Mendix Studio Pro 10.19
0 < *
Siemens / Mendix Studio Pro 10.20
0 < *
Siemens / Mendix Studio Pro 10.21
0 < *
Siemens / Mendix Studio Pro 10.22
0 < *
Siemens / Mendix Studio Pro 10.23
0 < *
Siemens / Mendix Studio Pro 10.24
0 < V10.24.21
Siemens / Mendix Studio Pro 11.0
0 < *
Siemens / Mendix Studio Pro 11.1
0 < *
Siemens / Mendix Studio Pro 11.10
0 < *
Siemens / Mendix Studio Pro 11.11
0 < *
Siemens / Mendix Studio Pro 11.2
0 < *
Siemens / Mendix Studio Pro 11.3
0 < *
Siemens / Mendix Studio Pro 11.4
0 < *
Siemens / Mendix Studio Pro 11.5
0 < *
Siemens / Mendix Studio Pro 11.6
0 < V11.6.7
Siemens / Mendix Studio Pro 11.7
0 < *
Siemens / Mendix Studio Pro 11.8
0 < *
Siemens / Mendix Studio Pro 11.9
0 < *

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
cert-portal.siemens.com: https://cert-portal.siemens.com/productcert/html/ssa-779310.html