35 matches found
EUVD-2021-21985
Malware in sbrugna...
EUVD-2024-36393
Malicious code in bioql PyPI...
CVE-2025-49603
Northern.tech Mender Server before 3.7.11 and 4.x before 4.0.1 has Incorrect Access Control...
CVE-2025-49603
CVE-2025-49603 concerns improper access control in Northern.tech Mender Server . Affected are versions prior to 3.7.11 and prior to 4.0.1 (4.x). The root cause is described as Incorrect Access Control , with public sources noting an issue affecting device groups in Mender Server. The CVSS 3.1 bas...
CVE-2025-49603
Northern.tech Mender Server before 3.7.11 and 4.x before 4.0.1 has Incorrect Access Control...
CVE-2024-46948
Northern.tech Mender before 3.6.5 and 3.7.x before 3.7.5 has Incorrect Access Control...
CVE-2024-46947
Northern.tech Mender before 3.6.6 and 3.7.x before 3.7.7 allows SSRF...
CVE-2022-41324
Northern.tech Mender 3.3.x before 3.3.2 and 3.4.x before 3.4.0 has Incorrect Access Control and allows low-privileged users default read access to some sensitive device information...
CVE-2022-45929
Northern.tech Mender 3.3.x before 3.3.2, 3.5.x before 3.5.0, and 3.6.x before 3.6.0 has Incorrect Access Control and allows users to change their roles and could allow privilege escalation from a low-privileged read-only user to a high-privileged user...
CVE-2024-37019
Northern.tech Mender Enterprise before 3.6.4 and 3.7.x before 3.7.4 has Weak Authentication...
CVE-2024-55959
CVE-2024-55959 affects Northern.tech Mender Client 4.x prior to 4.0.5. The root cause is insecure permissions on a private key file, enabling unauthorized access and leading to potential confidentiality and integrity impacts. The CVSS v3.1 score is 9.1 (CRITICAL) with network attack vector, no us...
CVE-2024-46948
Northern.tech Mender before 3.6.5 and 3.7.x before 3.7.5 has Incorrect Access Control...
CVE-2024-46948
Northern.tech Mender before 3.6.5 and 3.7.x before 3.7.5 has Incorrect Access Control...
CVE-2024-46947
Northern.tech Mender before 3.6.6 and 3.7.x before 3.7.7 allows SSRF...
CVE-2024-46947
CVE-2024-46947 (and related CVE-2024-47190) describe a server-side request forgery (SSRF) vulnerability in Northern.tech Mender. Affected products include: Northern.tech Mender before 3.6.6 and 3.7.x before 3.7.7, and Northern.tech Hosted Mender before 2024.07.11. The root cause is an SSRF flaw a...
CVE-2024-46948
Northern.tech Mender before 3.6.5 and 3.7.x before 3.7.5 has Incorrect Access Control...
CVE-2024-46947
Northern.tech Mender before 3.6.6 and 3.7.x before 3.7.7 allows SSRF...
Northern.tech Mender 安全漏洞
Northern.tech Mender is a secure and reliable remote update solution from Northern.tech, Inc. It is suitable for connected devices of any size. A security vulnerability exists in versions of Northern.tech Mender prior to 2024.07.11 that stems from the presence of a server-side request forgery...
CVE-2024-46948
Northern.tech Mender before 3.6.5 and 3.7.x before 3.7.5 has Incorrect Access Control...
CVE-2024-47190
Northern.tech Hosted Mender before 2024.07.11 allows SSRF...