High severity8.8NVD Advisory· Published Jun 20, 2024· Updated Apr 15, 2026
CVE-2022-45929
CVE-2022-45929
Description
Northern.tech Mender 3.3.x before 3.3.2, 3.5.x before 3.5.0, and 3.6.x before 3.6.0 has Incorrect Access Control and allows users to change their roles and could allow privilege escalation from a low-privileged read-only user to a high-privileged user.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2>=3.3.0,<3.3.2 OR >=3.5.0,<3.5.0 OR >=3.6.0,<3.6.0+ 1 more
- (no CPE)range: >=3.3.0,<3.3.2 OR >=3.5.0,<3.5.0 OR >=3.6.0,<3.6.0
- (no CPE)range: >=3.3.0, <3.3.2 || >=3.5.0, <3.5.0 || >=3.6.0, <3.6.0
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.