Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2022-29556
HistoryApr 28, 2022 - 7:48 p.m.

CVE-2022-29556

2022-04-2819:48:39
mitre
www.cve.org
iot-manager
microservice
ssrf
northern.tech mender enterprise
azure iot hub integration
cross-tenant actions
internal api endpoints
cve-2022-29556

AI Score

9.7

Confidence

High

EPSS

0.002

Percentile

60.5%

JSON

The iot-manager microservice 1.0.0 in Northern.tech Mender Enterprise before 3.2.2 allows SSRF because the Azure IoT Hub integration provides several SSRF primitives that can execute cross-tenant actions via internal API endpoints.

Related

cve 1
prion 1
nvd 1
cve
cve
CVE-2022-29556
2022-04-28 20:15:08
prion
prion
Server side request forgery (ssrf)
2022-04-28 20:15:00
nvd
nvd
CVE-2022-29556
2022-04-28 20:15:08

AI Score

9.7

Confidence

High

EPSS

0.002

Percentile

60.5%

JSON
Related for CVELIST:CVE-2022-29556
cve1prion1nvd1