CVE-2019-9929
HIGHNorthern.tech CFEngine Enterprise <3.12.1 - Info Disclosure
Title source: llmDescription
Northern.tech CFEngine Enterprise 3.12.1 has Insecure Permissions.
References (2)
Core 2
Core References
Release Notes, Vendor Advisory x_refsource_misc
https://cfengine.com/product/latest-release/
Exploit, Mitigation, Vendor Advisory x_refsource_misc
https://cfengine.com/company/blog-detail/cve-2019-9929-internal-authentication-secrets-leaked-in-logs/
Scores
CVSS v3
8.8
EPSS
0.0066
EPSS Percentile
71.3%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-532
Status
published
Products (1)
northern/cfengine
3.12.1
Published
Jun 06, 2019
Tracked Since
Feb 18, 2026