3 matches found
CVE-2025-34069
An authentication bypass vulnerability exists in GFI Kerio Control 9.4.5 due to insecure default proxy configuration and weak access control in the GFIAgent service. The non-transparent proxy on TCP port 3128 can be used to forward unauthenticated requests to internal services such as GFIAgent,...
CVE-2025-34070
GFI Kerio Control 9.4.5 is affected by a missing authentication vulnerability in the GFIAgent component. The GFIAgent service exposes HTTP interfaces on ports 7995 and 7996; the /proxy handler on 7996 can forward requests to administrative endpoints when supplied with an Appliance UUID, which is ...
CVE-2025-34070 GFI Kerio Control GFIAgent Missing Authentication on Administrative Interfaces
A missing authentication vulnerability in the GFIAgent component of GFI Kerio Control 9.4.5 allows unauthenticated remote attackers to perform privileged operations. The GFIAgent service, responsible for integration with GFI AppManager, exposes HTTP services on ports 7995 and 7996 without proper...