CVE-2024-46947 | Northern.tech Mender up to 3.6.5/3.7.6 server-side request forgery

Posted by Angelo Barbosa | Nov 8, 2024 | CVE

A vulnerability classified as critical has been found in Northern.tech Mender up to 3.6.5/3.7.6. Affected is an unknown function. The manipulation leads to server-side request forgery.

This vulnerability is traded as CVE-2024-46947. Access to the local network is required for this attack. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-46947 | Northern.tech Mender up to 3.6.5/3.7.6 server-side request forgery

Related Posts

CVE-2024-6328 | MStore API Plugin up to 4.14.7 on WordPress improper authentication

CVE-2024-3053 | Forminator Plugin up to 1.29.2 on WordPress Shortcode forminator_form cross site scripting

CVE-2024-3309 | Qi Addons for Elementor Plugin up to 1.7.0 on WordPress Countdown Widget cross site scripting

CVE-2023-45316 | Mattermost up to 7.8.14/8.1.5/9.0.3/9.1.2/9.2.1 Telemetry Run ID path traversal