PT-2026-21590

Name of the Vulnerable Software and Affected Versions free5GC SMF versions up to and including 1.4.1 Description free5GC SMF provides Session Management Function for free5GC, an open-source project for 5th generation 5G mobile core networks. The SMF component experiences a panic and terminates wh...

CVE-2025-58069 AutomationDirect CLICK PLUS Use of Hard-coded Cryptographic Key

The use of a hard-coded cryptographic key was discovered in firmware version 3.60 of the Click Plus PLC. The vulnerability relies on the fact that the software contains a hard-coded AES key used to protect the initial messages of a new KOPS session...

Concrete CMS 安全漏洞

Concrete CMS is a team-oriented open source content management system from Concrete CMS Open Source. A security vulnerability exists in Concrete CMS versions 9 through 9.4.2 and prior to 8.5.21, which stems from a reflected cross-site scripting vulnerability in the Session Messages Dashboard page...

OpenSIPS 输入验证错误漏洞

OpenSIPS is a GPL-licensed SIP server implementation from the individual developers of OpenSIPS. An input validation error vulnerability exists in OpenSIPS prior to 3.1.8 and prior to 3.2.5, which stems from a segmentation error that causes a crash when the rewriteruri function processes speciall...

PT-2021-21740 · Unknown +1 · Freeswitch +1

Name of the Vulnerable Software and Affected Versions: FreeSWITCH versions prior to 1.10.7 Description: The issue concerns the lack of authentication for SIP MESSAGE requests in FreeSWITCH, leading to potential spam and message spoofing. By default, SIP requests of the type MESSAGE are not...

Cisco Unified Border Element Denial of Service Vulnerability

Cisco Unified Border Element is an intelligent unified communications network border component from Cisco. A denial of service vulnerability exists in Cisco Unified Border Element. Due to the failure of the session initialization protocol to properly handle messages, a remote attacker exploiting...