National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Keyword (text search): cfengine
  • Search Type: Search Last 3 Years
  • Contains Software Flaws (CVE)
There are 2 matching records.
Vuln ID Summary CVSS Severity
CVE-2019-19394

Northern.tech CFEngine Enterprise before 3.10.7, 3.11.x and 3.12.x before 3.12.3, 3.13.x, and 3.14.x allows XSS. This is fixed in 3.10.7, 3.12.3, and 3.15.0.

Published: April 16, 2020; 03:15:22 PM -04:00
V3.1: 6.1 MEDIUM
    V2: 4.3 MEDIUM
CVE-2019-9929

Northern.tech CFEngine Enterprise 3.12.1 has Insecure Permissions.

Published: June 06, 2019; 01:29:00 PM -04:00
V3.0: 8.8 HIGH
    V2: 9.0 HIGH