CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

CVE•added 2026/05/14 12:0 a.m.•8 views

CVE-2026-24711

CVE-2026-24711 affects Northern.tech CFEngine Enterprise before 3.21.8, 3.24.3, and 3.27.0 with Incorrect Access Control. The NVD entry lists a CVSS v3.1 base score of 5.3 (Network, Low Confidentiality impact, No Integrity/Availability impact; privileges required: None; user interaction: None; sc...

5.3CVSS5.8AI score0.00039EPSS

Exploits0References2Affected Software1

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2019-19284

Malware in sbrugna...

9CVSS8.8AI score0.00609EPSS

Exploits1References4

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-30355

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00395EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2021-31066

Malicious code in bioql PyPI...

5.5CVSS5.5AI score0.00073EPSS

Exploits2References3

NVD•added 2025/01/21 9:15 p.m.•2 views

CVE-2024-55958

Northern.tech CFEngine Enterprise Mission Portal 3.24.0, 3.21.5, and below allows XSS. The fixed versions are 3.24.1 and 3.21.6...

4.8CVSS0.00182EPSS

Exploits0References2

UbuntuCve•added 2023/11/14 3:15 p.m.•17 views

CVE-2023-45684

Northern.tech CFEngine Enterprise before 3.21.3 allows SQL Injection. The fixed versions are 3.18.6 and 3.21.3. The earliest affected version is 3.6.0. The issue is in the Mission Portal login page in the CFEngine hub...

7.5CVSS7.1AI score0.0058EPSS

Exploits0References2

Cvelist•added 2023/11/14 12:0 a.m.•14 views

CVE-2023-45684

7.9AI score0.0058EPSS

Exploits0References1

Prion•added 2023/04/26 12:15 a.m.•11 views

Design/Logic Flaw

Northern.tech CFEngine Enterprise before 3.21.1 allows a subset of authenticated users to leverage the Scheduled Reports feature to read arbitrary files and potentially discover credentials...

4CVSS6.1AI score0.00395EPSS

Exploits0References2Affected Software1

OSV•added 2022/03/10 5:44 p.m.•29 views

CVE-2021-44216

Northern.tech CFEngine Enterprise before 3.15.5 and 3.18.x before 3.18.1 has Insecure Permissions that may allow unauthorized local users to access the Apache and Mission Portal log files...

5.5CVSS5.4AI score0.00073EPSS

Exploits2References2

CNNVD•added 2022/03/10 12:0 a.m.•2 views

Northern.tech CFEngine 安全漏洞

Northern.tech CFEngine is an IT infrastructure configuration management and automation framework. A security vulnerability exists in Northern.tech CFEngine Enterprise versions prior to 3.15.4 3.15.5 that allows unauthorized local users to have an unspecified impact...

5.5CVSS5.8AI score0.00073EPSS

Exploits2References3

Prion•added 2020/04/16 7:15 p.m.•12 views

Code injection

Northern.tech CFEngine Enterprise before 3.10.7, 3.11.x and 3.12.x before 3.12.3, 3.13.x, and 3.14.x allows XSS. This is fixed in 3.10.7, 3.12.3, and 3.15.0...

4.3CVSS6.2AI score0.00359EPSS

Exploits0References1Affected Software1

UbuntuCve•added 2019/06/06 5:29 p.m.•16 views

CVE-2019-9929

Northern.tech CFEngine Enterprise 3.12.1 has Insecure Permissions...

9CVSS7.2AI score0.00609EPSS

Exploits1References3