Known Vulnerabilities for Cfengine by Northern
Listed below are 2 of the newest known vulnerabilities associated with "Cfengine" by "Northern".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-33553 json | Northern.tech CFEngine Enterprise 3.24.3 before 3.24.4 and 3.27.0 before 3.27.1 allows XSS. | Not Provided | 2026-06-02 | 2026-06-02 |
| CVE-2026-24712 json | Northern.tech CFEngine Enterprise and Community before 3.21.8, 3.24.3, and 3.27.0 allows Command injection. | Not Provided | 2026-05-14 | 2026-05-15 |
| CVE-2026-24711 json | Northern.tech CFEngine Enterprise before 3.21.8, 3.24.3, and 3.27.0 has Incorrect Access Control. | Not Provided | 2026-05-14 | 2026-05-15 |
| CVE-2026-24710 json | Northern.tech CFEngine Enterprise before 3.21.8, 3.24.3, and 3.27.0 allows XSS. | Not Provided | 2026-05-14 | 2026-05-14 |
| CVE-2021-36756 json | CFEngine Enterprise 3.15.0 through 3.15.4 has Missing SSL Certificate Validation. | 6.5 - MEDIUM | 2021-10-27 | 2021-11-04 |
| CVE-2019-9929 json | Northern.tech CFEngine Enterprise 3.12.1 has Insecure Permissions. | 8.8 - HIGH | 2019-06-06 | 2020-08-24 |