CVE-2025-54561

Medium CVSS: 4.3

An Incorrect Access Control vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows remote access to content despite lack of the correct permission through a Broken Authorization Schema.

Vendor

Desktopalert

Product

Pingalert Application Server

CWE

CWE-284

Yayın Tarihi

2025-11-14 18:15:49

Güncelleme

2025-11-20 14:46:20

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-284 Pingalert Application Server MEDIUM Desktopalert 2025

Referanslar

https://desktopalert.net https://desktopalert.net/cve-2025-54561/

Benzer Kayıtlar

Medium

CVE-2025-54341

A vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2. There are Ha…

Critical

CVE-2025-54347

A Directory Traversal vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6…

High

CVE-2025-54563

An Incorrect Access Control vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.1…

High

CVE-2025-54338

An Incorrect Access Control vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.1…

Medium

CVE-2025-54348

A Stored Cross Site Scripting (XSS) vulnerability was found in the Application Server of Desktop Alert PingAlert version…

Low

CVE-2025-54559

An issue was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows remote…