CVE-2024-47190

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-47190
Northern.tech Hosted Mender before 2024.07.11 allows SSRF.

2.7 /10

CVSS v3 : LOW

V3 Legend

Vector :

Exploitability : 1.2 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://mender.io/blog/cve-2024-46947-cve-2024-47190-ssrf-issues-in-mender-enterprise-server
Configurations

No configuration.

History

15 Apr 2026, 00:35

Type Values Removed Values Added
Summary
  • (es) Northern.tech Hosted Mender antes del 11/07/2024 permite SSRF.

08 Nov 2024, 19:35

Type Values Removed Values Added
CWE CWE-918
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 2.7

08 Nov 2024, 16:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-11-08 16:15

Updated : 2026-06-17 07:56

NVD link : CVE-2024-47190

Mitre link : CVE-2024-47190

CVE.ORG link : CVE-2024-47190

JSON object : View

Products Affected

No product.

CWE
CWE-918

Server-Side Request Forgery (SSRF)