CNNVD-202506-3348 Information

CNNVD ID

CNNVD-202506-3348

Related CVE

CVE-2025-49603

• CNNVD Published: 2025-06-26

Description (Chinese)

Northern.tech Mender Server是美国Northern.tech公司的一个物联网服务器端软件。 Northern.tech Mender Server 3.7.11之前版本和4.0.1之前版本存在安全漏洞，该漏洞源于访问控制不当。

Description (English)

Northern.tech Mender Server is a United States Northern.tech network server-end software. Northern.tech Mender Server 3.7.11 and before 4.01 have a security gap, which stems from inadequate access control.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Northern.tech

Published

2025-06-26

Last Modified

2026-02-24

References

https://mender.io/blog/cve-2025-49603-improper-access-control-of-device-groups-in-mender-server https://northern.tech

Patch

https://docs.mender.io/server-installation/upgrading-from-previous-versions