4 matches found
CVE-2026-24711
Northern.tech CFEngine Enterprise before 3.21.8, 3.24.3, and 3.27.0 has Incorrect Access Control...
CVE-2026-24710
Northern.tech CFEngine Enterprise (and related CFEngine records) contains multiple CVEs affecting pre-3.21.8, 3.24.3, and 3.27.0. Specifically, CVE-2026-24710: CFEngine Enterprise before 3.21.8, 3.24.3, and 3.27.0 allows XSS. Related CVEs CVE-2026-24711 and CVE-2026-24712 affect the same release ...
CVE-2026-24711
Northern.tech CFEngine Enterprise before 3.21.8, 3.24.3, and 3.27.0 has Incorrect Access Control...
CVE-2025-10203
Relative path traversal vulnerability due to improper input validation in Digilent WaveForms that may result in arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted .DWF3WORK file. This vulnerability affects Digilent WaveForms 3.24.3 and...