224 matches found
CVE-2021-44215
Northern.tech CFEngine Enterprise 3.15.4 before 3.15.5 has Insecure Permissions that may allow unauthorized local users to have an unspecified impact...
CVE-2021-44216
Northern.tech CFEngine Enterprise before 3.15.5 and 3.18.x before 3.18.1 has Insecure Permissions that may allow unauthorized local users to access the Apache and Mission Portal log files...
Code injection
Northern.tech CFEngine Enterprise before 3.15.5 and 3.18.x before 3.18.1 has Insecure Permissions that may allow unauthorized local users to access the Apache and Mission Portal log files...
Code injection
Northern.tech CFEngine Enterprise 3.15.4 before 3.15.5 has Insecure Permissions that may allow unauthorized local users to have an unspecified impact...
Northern.tech CFEngine 安全漏洞
Northern.tech CFEngine is an IT infrastructure configuration management and automation framework. A security vulnerability exists in Northern.tech CFEngine Enterprise versions prior to 3.15.4 3.15.5 that allows unauthorized local users to have an unspecified impact...
Northern.tech CFEngine 安全漏洞
Northern.tech CFEngine is an IT infrastructure configuration management and automation framework. A security vulnerability exists in Northern.tech CFEngine Enterprise versions prior to 3.15.5 that allows unauthorized local users to access Apache and Mission Portal log files...
CVE-2021-44215
Northern.tech CFEngine Enterprise 3.15.4 before 3.15.5 has Insecure Permissions that may allow unauthorized local users to have an unspecified impact...
CVE-2021-44215
CVE-2021-44215 and CVE-2021-44216 affect Northern.tech CFEngine Enterprise. CVE-2021-44215: CFEngine Enterprise 3.15.4 before 3.15.5 has insecure file permissions that may allow unauthorized local users to have an unspecified impact. CVE-2021-44216: CFEngine Enterprise versions before 3.15.5 and ...
CVE-2021-44216
CVE-2021-44216 affects Northern.tech CFEngine Enterprise: before 3.15.5 and, for 3.18.x, before 3.18.1, there are insecure permissions that may allow unauthorized local users to access the Apache and Mission Portal log files. Upgrading to CFEngine Enterprise 3.15.5 or 3.18.1 (or newer) is the doc...
CVE-2021-44216
Northern.tech CFEngine Enterprise before 3.15.5 and 3.18.x before 3.18.1 has Insecure Permissions that may allow unauthorized local users to access the Apache and Mission Portal log files...
PT-2022-12019 · Apache +2 · Apache Http Server +2
Name of the Vulnerable Software and Affected Versions: Northern.tech CFEngine Enterprise versions prior to 3.15.5 Northern.tech CFEngine Enterprise versions 3.18.x prior to 3.18.1 Description: The issue is related to insecure permissions, which may allow unauthorized local users to access log...
CVE-2021-38379
The Hub in CFEngine Enterprise 3.6.7 through 3.18.0 has Insecure Permissions that allow local Information Disclosure...
CVE-2021-38379
The Hub in CFEngine Enterprise 3.6.7 through 3.18.0 has Insecure Permissions that allow local Information Disclosure...
CVE-2021-36756
CFEngine Enterprise 3.15.0 through 3.15.4 has Missing SSL Certificate Validation...
CVE-2021-36756
CFEngine Enterprise 3.15.0 through 3.15.4 has Missing SSL Certificate Validation...
Input validation
CFEngine Enterprise 3.15.0 through 3.15.4 has Missing SSL Certificate Validation...
CVE-2021-38379
The Hub in CFEngine Enterprise 3.6.7 through 3.18.0 has Insecure Permissions that allow local Information Disclosure...
Information disclosure
The Hub in CFEngine Enterprise 3.6.7 through 3.18.0 has Insecure Permissions that allow local Information Disclosure...
CVE-2021-36756
CFEngine Enterprise 3.15.0 through 3.15.4 has Missing SSL Certificate Validation...
CVE-2021-36756
CVE-2021-36756 affects CFEngine Enterprise 3.15.0–3.15.4 with Missing SSL Certificate Validation, exposed over network (per CVSS) and impacting confidentiality/integrity. Connected advisories confirm a fix is available; update cfengine packages via vendor advisories (e.g., ROSA/Red Hat) to remedi...