PT-2025-3165 · Northern.Tech · Mender Client
Maximilian Riemensberger
·
Published
2025-01-21
·
Updated
2025-01-22
·
CVE-2024-55959
CVSS v3.1
9.1
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
Northern.tech Mender Client versions 4.0.0 through 4.0.4
Description
The issue is related to insecure permissions in the Northern.tech Mender Client.
Recommendations
For Northern.tech Mender Client versions 4.0.0 through 4.0.4, update to version 4.0.5 or later to resolve the issue.
Fix
Incorrect Default Permissions
Incorrect Permission
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Mender Client