High severity8.8NVD Advisory· Published Jun 20, 2024· Updated Apr 15, 2026

CVE-2022-45929

Description

Northern.tech Mender 3.3.x before 3.3.2, 3.5.x before 3.5.0, and 3.6.x before 3.6.0 has Incorrect Access Control and allows users to change their roles and could allow privilege escalation from a low-privileged read-only user to a high-privileged user.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

mender.io/blog/cve-2022-45929-cve-2022-41324-improper-access-control-for-low-privileged-usersnvd
northern.technvd

News mentions

No linked articles in our index yet.

cvss	0.572
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000