CVE-2023-50015

An issue was discovered in Grandstream GXP14XX 1.0.8.9 and GXP16XX 1.0.7.13, allows remote attackers to escalate privileges via incorrect access control using an end-user session-identity token...

Grandstream GXP14XX and GXP16XX Security Vulnerabilities

The Grandstream GXP14XX and Grandstream GXP16XX are both a series of IP phones from American Trend Networks Grandstream. A security vulnerability exists in the Grandstream GXP14XX version 1.0.8.9 and GXP16XX version 1.0.7.13, which originates from a vulnerability that allows a remote attacker to...

PT-2024-13846 · Grandstream · Grandstream Gxp16Xx +1

Name of the Vulnerable Software and Affected Versions: Grandstream GXP14XX version 1.0.8.9 Grandstream GXP16XX version 1.0.7.13 Description: An issue was discovered that allows remote attackers to escalate privileges via incorrect access control using an end-user session-identity token...

CVE-2021-31852

A Reflected Cross-Site Scripting vulnerability in McAfee Policy Auditor prior to 6.5.2 allows a remote unauthenticated attacker to inject arbitrary web script or HTML via the UID request parameter. The malicious script is reflected unmodified into the Policy Auditor web-based interface which coul...

WEM Drive Restriction policy will not apply to End User session on WEM Agent

WEM Drive Restriction policy will not apply to End User session on WEM Agent machines...