VYPR
Medium severity6.5NVD Advisory· Published Jun 20, 2024· Updated Apr 15, 2026

CVE-2022-41324

CVE-2022-41324

Description

Northern.tech Mender 3.3.x before 3.3.2 and 3.4.x before 3.4.0 has Incorrect Access Control and allows low-privileged users default read access to some sensitive device information.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Northern.tech/Menderinferred2 versions
    >=3.3,<3.3.2 || >=3.4,<3.4.0+ 1 more
    • (no CPE)range: >=3.3,<3.3.2 || >=3.4,<3.4.0
    • (no CPE)range: 3.3.x < 3.3.2, 3.4.x < 3.4.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.