THREAT OPS › Threat News › [NVD] CVE-2026-7891 (CRITICAL 9.1) — A vulnerability has been identified in Mendix Runtime (All versions). Mendix documentation for access rules does not adequately describe the special behavior of the System.User entity, leaving developers without sufficient guidance to configure access rules securely. This documen
[NVD] CVE-2026-7891 (CRITICAL 9.1) — A vulnerability has been identified in Mendix Runtime (All versions). Mendix documentation for access rules does not adequately describe the special behavior of the System.User entity, leaving developers without sufficient guidance to configure access rules securely. This documen
CVE-2026-7891 CVSS: 9.1 CRITICAL Published: 2026-05-07T22:16:37.070
A vulnerability has been identified in Mendix Runtime (All versions). Mendix documentation for access rules does not adequately describe the special behavior of the System.User entity, leaving developers without sufficient guidance to configure access rules securely. This documentation gap may lead application developers to unkno
Indicators of compromise
- CVE-2026-7891cve
Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-7891