35 matches found
EUVD-2021-21985
Malware in sbrugna...
EUVD-2024-36393
Malicious code in bioql PyPI...
CVE-2025-49603
Northern.tech Mender Server before 3.7.11 and 4.x before 4.0.1 has Incorrect Access Control...
CVE-2025-49603
CVE-2025-49603 concerns improper access control in Northern.tech Mender Server . Affected are versions prior to 3.7.11 and prior to 4.0.1 (4.x). The root cause is described as Incorrect Access Control , with public sources noting an issue affecting device groups in Mender Server. The CVSS 3.1 bas...
CVE-2025-49603
Northern.tech Mender Server before 3.7.11 and 4.x before 4.0.1 has Incorrect Access Control...
CVE-2024-46948
Northern.tech Mender before 3.6.5 and 3.7.x before 3.7.5 has Incorrect Access Control...
CVE-2024-46947
Northern.tech Mender before 3.6.6 and 3.7.x before 3.7.7 allows SSRF...
CVE-2022-41324
Northern.tech Mender 3.3.x before 3.3.2 and 3.4.x before 3.4.0 has Incorrect Access Control and allows low-privileged users default read access to some sensitive device information...
CVE-2022-45929
Northern.tech Mender 3.3.x before 3.3.2, 3.5.x before 3.5.0, and 3.6.x before 3.6.0 has Incorrect Access Control and allows users to change their roles and could allow privilege escalation from a low-privileged read-only user to a high-privileged user...
CVE-2024-37019
Northern.tech Mender Enterprise before 3.6.4 and 3.7.x before 3.7.4 has Weak Authentication...
CVE-2024-55959
CVE-2024-55959 affects Northern.tech Mender Client 4.x prior to 4.0.5. The root cause is insecure permissions on a private key file, enabling unauthorized access and leading to potential confidentiality and integrity impacts. The CVSS v3.1 score is 9.1 (CRITICAL) with network attack vector, no us...
CVE-2024-46948
Northern.tech Mender before 3.6.5 and 3.7.x before 3.7.5 has Incorrect Access Control...
CVE-2024-46948
Northern.tech Mender before 3.6.5 and 3.7.x before 3.7.5 has Incorrect Access Control...
CVE-2024-46947
Northern.tech Mender before 3.6.6 and 3.7.x before 3.7.7 allows SSRF...
CVE-2024-46947
Northern.tech Mender before 3.6.6 and 3.7.x before 3.7.7 allows SSRF...
CVE-2024-46948
Northern.tech Mender before 3.6.5 and 3.7.x before 3.7.5 has Incorrect Access Control...
CVE-2024-46948
CVE-2024-46948 affects Northern.tech Mender before 3.6.5 and 3.7.x before 3.7.5, due to an Incorrect Access Control flaw. The vulnerability permits access control bypass (specifics not detailed in the provided documents). Affected components/versions are clearly stated; remediation is to upgrade ...
CVE-2024-47190
Northern.tech Hosted Mender before 2024.07.11 allows SSRF...
CVE-2024-46948
Northern.tech Mender before 3.6.5 and 3.7.x before 3.7.5 has Incorrect Access Control...
Northern.tech Mender 安全漏洞
Northern.tech Mender is a secure and reliable remote update solution from Northern.tech, Inc. It is suitable for connected devices of any size. A security vulnerability exists in versions of Northern.tech Mender prior to 2024.07.11 that stems from the presence of a server-side request forgery...