← Back

CVE-2025-54338

nvd nist
Published: Nov 24, 2025Modified: Dec 5, 2025

JSON object

Loading...
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Exploitability: 3.9 / Impact: 3.6
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

An Incorrect Access Control vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows an attacker to disclose user hashes.

Affected (1)

Desktopalert
1 product
Pingalert Application Server
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Pingalert Application Server
From 6.1.0.11 to 6.1.1.6

Related CWEs

CWE-284
Improper Access Control
The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

References (1)

Source: cve@mitre.org
Vendor Advisory

Timeline

No history available yet.