Northern.tech CFEngine Enterprise before 3.21.3 allows SQL Injection. The fixed versions are 3.18.6 and 3.21.3. The earliest affected version is 3.6.0. The issue is in the Mission Portal login page in the CFEngine hub.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2023-11-14T00:00:00

Updated: 2024-09-03T15:13:52.177Z

Reserved: 2023-10-10T00:00:00

Link: CVE-2023-45684

cve-icon Vulnrichment

Updated: 2024-08-02T20:29:31.177Z

cve-icon NVD

Status : Modified

Published: 2023-11-14T15:15:07.553

Modified: 2024-11-21T08:27:12.860

Link: CVE-2023-45684

cve-icon Redhat

No data.