THREATOPS
THREAT OPSThreat News › [NVD] CVE-2026-7891 (CRITICAL 9.1) — A vulnerability has been identified in Mendix Runtime (All versions). Mendix documentation for access rules does not adequately describe the special behavior of the System.User entity, leaving developers without sufficient guidance to configure access rules securely. This documen

[NVD] CVE-2026-7891 (CRITICAL 9.1) — A vulnerability has been identified in Mendix Runtime (All versions). Mendix documentation for access rules does not adequately describe the special behavior of the System.User entity, leaving developers without sufficient guidance to configure access rules securely. This documen

lownvdPublished 2026-05-07

CVE-2026-7891 CVSS: 9.1 CRITICAL Published: 2026-05-07T22:16:37.070

A vulnerability has been identified in Mendix Runtime (All versions). Mendix documentation for access rules does not adequately describe the special behavior of the System.User entity, leaving developers without sufficient guidance to configure access rules securely. This documentation gap may lead application developers to unkno

Indicators of compromise

Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-7891