Northern.tech Cfengine
3 CVEs affecting Northern.tech Cfengine. Latest disclosed: 2026-05-14. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-24712 | High | 7.3 | 2026-05-14 | Northern.tech CFEngine Enterprise and Community before 3.21.8, 3.24.3, and 3.27.0 allows Command injection. |
CVE-2026-24710 | Medium | 6.1 | 2026-05-14 | Northern.tech CFEngine Enterprise before 3.21.8, 3.24.3, and 3.27.0 allows XSS. |
CVE-2026-24711 | Medium | 5.3 | 2026-05-14 | Northern.tech CFEngine Enterprise before 3.21.8, 3.24.3, and 3.27.0 has Incorrect Access Control. |