The iot-manager microservice 1.0.0... CVE-2022-29556

7.5 AV AC AU C I A
发布: 2022-04-28
修订: 2022-05-10

The iot-manager microservice 1.0.0 in Northern.tech Mender Enterprise before 3.2.2 allows SSRF because the Azure IoT Hub integration provides several SSRF primitives that can execute cross-tenant actions via internal API endpoints.

0%
暂无可用Exp或PoC
当前有2条受影响产品信息