Northern.tech Mender 3.3.x before 3.3.2, 3.5.x before 3.5.0, and 3.6.x before 3.6.0 has Incorrect Access Control and allows users to change their roles and could allow privilege escalation from a low-privileged read-only user to a high-privileged user.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-06-20T00:00:00
Updated: 2024-08-03T14:24:03.220Z
Reserved: 2022-11-27T00:00:00
Link: CVE-2022-45929
Vulnrichment
Updated: 2024-08-03T14:24:03.220Z
NVD
Status : Awaiting Analysis
Published: 2024-06-20T17:15:50.127
Modified: 2024-07-03T01:38:55.120
Link: CVE-2022-45929
Redhat
No data.