Northern.tech CFEngine Enterprise prior to 3.21.3 allows SQL Injection. The fixed versions are 3.18.6 and 3.21.3. The earliest affected version is 3.6.0. The issue is in the Mission Portal login page in the CFEngine hub.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
northern.tech cfengine |