Mender Server

CVEs (2)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2025-49603	Northern.tech Mender Server	Cri	0.59	9.1	0.00		Jun 26, 2025	Northern.tech Mender Server before 3.7.11 and 4.x before 4.0.1 has Incorrect Access Control.
CVE-2026-49009	Northern.tech Mender Server		0.00	—	—		May 27, 2026	Northern.tech Mender Server v4.1.0, v4.0.1 and below, and fixed in v4.1.1 and v4.0.2 allows Directory Traversal.

CVE-2025-49603CriJun 26, 2025
Northern.tech
Mender Server
risk 0.59cvss 9.1epss 0.00
Northern.tech Mender Server before 3.7.11 and 4.x before 4.0.1 has Incorrect Access Control.
CVE-2026-49009May 27, 2026
Northern.tech
Mender Server
risk 0.00cvss —epss —
Northern.tech Mender Server v4.1.0, v4.0.1 and below, and fixed in v4.1.1 and v4.0.2 allows Directory Traversal.