CVE-2026-24755

Kiteworks is a private data network PDN. Prior to version 9.3.0, an Insecure Direct Object Reference IDOR vulnerability in Kiteworks Secure Data Forms allows an authenticated user to modify permissions on resources belonging to other users due to insufficient authorization checks on resource...

PT-2025-36741

Name of the Vulnerable Software and Affected Versions: Open5GS versions prior to 2.7.3 Description: An issue in Open5GS allows a remote attacker to cause a denial of service by sending a crafted Create Session Request message to the SMF PGW-C, utilizing the IP address of a legitimate UE in the PD...