Vulnerabilities > Northern Tech > Cfengine > 3.16.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-14 | CVE-2023-45684 | SQL Injection vulnerability in Northern.Tech Cfengine Northern.tech CFEngine Enterprise before 3.21.3 allows SQL Injection. | 7.5 |
| 2023-04-26 | CVE-2023-26560 | Unspecified vulnerability in Northern.Tech Cfengine Northern.tech CFEngine Enterprise before 3.21.1 allows a subset of authenticated users to leverage the Scheduled Reports feature to read arbitrary files and potentially discover credentials. | 6.5 |
| 2022-03-10 | CVE-2021-44215 | Incorrect Default Permissions vulnerability in Northern.Tech Cfengine Northern.tech CFEngine Enterprise 3.15.4 before 3.15.5 has Insecure Permissions that may allow unauthorized local users to have an unspecified impact. | 5.5 |
| 2021-10-27 | CVE-2021-38379 | Incorrect Default Permissions vulnerability in Northern.Tech Cfengine The Hub in CFEngine Enterprise 3.6.7 through 3.18.0 has Insecure Permissions that allow local Information Disclosure. | 5.5 |