Authorization Bypass Through User-Controlled Key

Overview Affected versions of this package are vulnerable to Authorization Bypass Through User-Controlled Key via the AccountEntriesAdminPortletaddressId parameter. An attacker can access address information belonging to other accounts by specifying arbitrary identifiers. Remediation Upgrade...

CVE-2025-2937

Removed by vendor...

Adobe InDesign < 17.4.1 / 18.0 < 18.2.0 Application denial-of-service (APSB23-12) (macOS)

The version of Adobe InDesign installed on the remote macOS host is prior to 17.4.1, 18.2.0. It is, therefore, affected by a vulnerability as referenced in the APSB23-12 advisory. - Adobe InDesign versions ID18.1 and earlier and ID17.4 and earlier are affected by a NULL Pointer Dereference...

Digium Asterisk Security Vulnerability

Digium Asterisk is a set of open source telephone exchange PBX system software from Digium, USA. The software supports voicemail, multi-party voice conferencing, interactive voice response IVR, and more. A security vulnerability exists in Digium Asterisk. The vulnerability stems from allowing a...

PT-2021-17106 · Sangoma +1 · Asterisk +1

Name of the Vulnerable Software and Affected Versions: Sangoma Asterisk versions 13.38.1 through 18.2.0 Certified Asterisk version 16.8-cert5 Description: The issue is related to incorrect access controls in the res srtp.c module, allowing a remote unauthenticated attacker to prematurely terminat...

CVE-2018-0376

A vulnerability in the Policy Builder interface of Cisco Policy Suite before 18.2.0 could allow an unauthenticated, remote attacker to access the Policy Builder interface. The vulnerability is due to a lack of authentication. An attacker could exploit this vulnerability by accessing the Policy...