Security Advisory

CVE-2022-29556

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-04-28 19:48:39

Last updated 2024-08-03 06:26:06

Assigner mitre

State PUBLISHED

Description

The iot-manager microservice 1.0.0 in Northern.tech Mender Enterprise before 3.2.2 allows SSRF because the Azure IoT Hub integration provides several SSRF primitives that can execute cross-tenant actions via internal API endpoints.

← Browse all CVEs View on cve.org ↗