CVE-2024-5595921.01.2025, 21:15Northern.tech Mender Client 4.x before 4.0.5 has Insecure Permissions.EnginsightProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVectorNISTNIST9.1 CRITICALNETWORKLOWNONECVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:NmitreCNA------CISA-ADPADP9.1 CRITICALNETWORKLOWNONECVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:NBase ScoreCVSS 3.xEPSS ScorePercentile: 30%Common Weakness EnumerationCWE-276 - Incorrect Default PermissionsDuring installation, installed file permissions are set to allow anyone to modify those files.Referenceshttps://Northern.techhttps://mender.io/blog/cve-2024-55959