Critical severity9.8NVD Advisory· Published Apr 28, 2022· Updated Jun 17, 2026
CVE-2022-29556
CVE-2022-29556
Description
The iot-manager microservice 1.0.0 in Northern.tech Mender Enterprise before 3.2.2 allows SSRF because the Azure IoT Hub integration provides several SSRF primitives that can execute cross-tenant actions via internal API endpoints.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Northern.tech/Mender Enterprisedescription
- Range: <3.2.2
Patches
Vulnerability mechanics
References
2- mender.io/blog/cve-2022-29555-and-cve-2022-29556-vulnerabilities-in-iot-manager-and-deviceconnectnvdVendor Advisory
- northern.technvdVendor Advisory
News mentions
0No linked articles in our index yet.