Volerion logoVolerion
Volerion logoVolerion

Northern.tech Mender Server Directory Traversal Vulnerability

Vulnerability

A directory traversal vulnerability has been identified in Northern.tech Mender Server versions 4.1.0, 4.0.1 and earlier. The issue arises from improper input sanitization in the endpoint for creating artifacts, which can be accessed through the UI or API. This flaw allows an attacker to include path traversal sequences in requests, enabling them to access and modify files outside the intended directory. In a multi-tenant environment like hosted Mender, this could lead to injecting malicious code into artifacts, potentially compromising the containers of other users.

Impact

Exploitation of this vulnerability could allow an attacker to inject arbitrary code into Mender artifacts, which could then be executed on devices using the Mender Client, bypassing signature verification. In a multi-tenant hosted Mender environment, where many users access the same APIs, the impact is severe. However, for on-premise installations, the risk is lower due to fewer users and the inability to easily sign up for accounts.

Remediation

Users are advised to upgrade to Mender Server versions 4.1.1 or 4.0.2. Detailed upgrade instructions are available in the Mender documentation.

Added: May 28, 2026, 3:24 AM
Updated: May 28, 2026, 3:24 AM

Vulnerability Rating

Custom Algorithm
spread
0.0
impact
1.3
exploitability
5.2
remediation
0.0
relevance
9.1
threat
0.0
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.