Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

50 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 11:24 a.m.4 views

CVE-2021-31583

Sipwise C5 NGCP WWW Admin version 3.6.7 up to and including platform version NGCP CE 3.0 has multiple authenticated stored and reflected XSS vulnerabilities when input passed via several parameters to several scripts is not properly sanitized before being returned to the user: Stored XSS in...

5.4CVSS6AI score0.01123EPSS
Exploits3References1
RedhatCVE
RedhatCVEadded 2026/01/09 11:23 a.m.4 views

CVE-2021-31584

Sipwise C5 NGCP wwwcsc version 3.6.4 up to and including platform NGCP CE mr3.8.13 allows call/click2dial CSRF attacks for actions with administrative privileges...

8.8CVSS6.9AI score0.00926EPSS
Exploits3References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.5 views

EUVD-2021-18478

Malware in sbrugna...

8.8CVSS8.7AI score0.00926EPSS
Exploits3References7
RedhatCVE
RedhatCVEadded 2025/08/03 2:13 p.m.5 views

CVE-2025-53399

In Sipwise rtpengine before 13.4.1.1, an origin-validation error in the endpoint-learning logic of the media-relay core allows remote attackers to inject or intercept RTP/SRTP media streams via RTP packets except when the relay is configured for strict source and learning disabled. Version 13.4.1...

6.9CVSS6.4AI score0.04652EPSS
Exploits0References1
OSV
OSVadded 2025/08/01 4:16 a.m.8 views

CVE-2025-53399

In Sipwise rtpengine before 13.4.1.1, an origin-validation error in the endpoint-learning logic of the media-relay core allows remote attackers to inject or intercept RTP/SRTP media streams via RTP packets except when the relay is configured for strict source and learning disabled. Version 13.4.1...

6.9CVSS6.2AI score
Exploits0References6
NVD
NVDadded 2025/08/01 4:16 a.m.5 views

CVE-2025-53399

In Sipwise rtpengine before 13.4.1.1, an origin-validation error in the endpoint-learning logic of the media-relay core allows remote attackers to inject or intercept RTP/SRTP media streams via RTP packets except when the relay is configured for strict source and learning disabled. Version 13.4.1...

6.9CVSS0.04652EPSS
Exploits0References6
OSV
OSVadded 2025/08/01 4:16 a.m.4 views

UBUNTU-CVE-2025-53399

In Sipwise rtpengine before 13.4.1.1, an origin-validation error in the endpoint-learning logic of the media-relay core allows remote attackers to inject or intercept RTP/SRTP media streams via RTP packets except when the relay is configured for strict source and learning disabled. Version 13.4.1...

6.9CVSS5.9AI score0.04652EPSS
Exploits0References6
Cvelist
Cvelistadded 2025/08/01 12:0 a.m.9 views

CVE-2025-53399

In Sipwise rtpengine before 13.4.1.1, an origin-validation error in the endpoint-learning logic of the media-relay core allows remote attackers to inject or intercept RTP/SRTP media streams via RTP packets except when the relay is configured for strict source and learning disabled. Version 13.4.1...

6.9CVSS0.04652EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2025/08/01 12:0 a.m.3 views

CVE-2025-53399

In Sipwise rtpengine before 13.4.1.1, an origin-validation error in the endpoint-learning logic of the media-relay core allows remote attackers to inject or intercept RTP/SRTP media streams via RTP packets except when the relay is configured for strict source and learning disabled. Version 13.4.1...

6.9CVSS6.4AI score0.04652EPSS
Exploits0References4
AlpineLinux
AlpineLinuxadded 2025/08/01 12:0 a.m.4 views

CVE-2025-53399

In Sipwise rtpengine before 13.4.1.1, an origin-validation error in the endpoint-learning logic of the media-relay core allows remote attackers to inject or intercept RTP/SRTP media streams via RTP packets except when the relay is configured for strict source and learning disabled. Version 13.4.1...

6.9CVSS7.3AI score0.04652EPSS
Exploits0References6
CVE
CVEadded 2025/08/01 12:0 a.m.28 views

CVE-2025-53399

In Sipwise rtpengine before 13.4.1.1, an origin-validation error in the endpoint-learning logic of the media-relay core can allow remote attackers to inject or intercept RTP/SRTP streams via RTP packets. The issue is mitigated in 13.4.1.1 by changing the heuristic exposure to the first five packe...

6.9CVSS7AI score0.04652EPSS
Exploits0References6
RedhatCVE
RedhatCVEadded 2025/05/23 10:12 a.m.4 views

CVE-2024-28345

An issue discovered in Sipwise C5 NGCP Dashboard below mr11.5.1 allows a low privileged user to access the Journal endpoint by directly visit the URL...

5.5CVSS6.8AI score0.0042EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/23 10:12 a.m.5 views

CVE-2024-28344

An Open Redirect vulnerability was found in Sipwise C5 NGCP Dashboard below mr11.5.1. The Open Redirect vulnerability allows attackers to control the "back" parameter in the URL through a double encoded URL...

3.1CVSS6.8AI score0.00463EPSS
Exploits2References1
NVD
NVDadded 2024/04/10 7:15 p.m.12 views

CVE-2024-28345

An issue discovered in Sipwise C5 NGCP Dashboard below mr11.5.1 allows a low privileged user to access the Journal endpoint by directly visit the URL...

5.5CVSS6.4AI score0.0042EPSS
Exploits1References1
NVD
NVDadded 2024/04/10 7:15 p.m.10 views

CVE-2024-28344

An Open Redirect vulnerability was found in Sipwise C5 NGCP Dashboard below mr11.5.1. The Open Redirect vulnerability allows attackers to control the "back" parameter in the URL through a double encoded URL...

3.1CVSS6.4AI score0.00463EPSS
Exploits2References1
OSV
OSVadded 2024/04/10 7:15 p.m.3 views

CVE-2024-28344

An Open Redirect vulnerability was found in Sipwise C5 NGCP Dashboard below mr11.5.1. The Open Redirect vulnerability allows attackers to control the "back" parameter in the URL through a double encoded URL...

3.1CVSS5.8AI score0.00463EPSS
Exploits2References1
OSV
OSVadded 2024/04/10 7:15 p.m.6 views

CVE-2024-28345

An issue discovered in Sipwise C5 NGCP Dashboard below mr11.5.1 allows a low privileged user to access the Journal endpoint by directly visit the URL...

5.5CVSS5.8AI score0.00463EPSS
Exploits2References1
Vulnrichment
Vulnrichmentadded 2024/04/10 12:0 a.m.8 views

CVE-2024-28345

An issue discovered in Sipwise C5 NGCP Dashboard below mr11.5.1 allows a low privileged user to access the Journal endpoint by directly visit the URL...

6.7AI score0.0042EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2024/04/10 12:0 a.m.14 views

CVE-2024-28344

An Open Redirect vulnerability was found in Sipwise C5 NGCP Dashboard below mr11.5.1. The Open Redirect vulnerability allows attackers to control the "back" parameter in the URL through a double encoded URL...

6.8AI score0.00463EPSS
Exploits2References1
Positive Technologies
Positive Technologiesadded 2024/04/10 12:0 a.m.3 views

PT-2024-22399 · Sipwise · Sipwise C5 Ngcp Dashboard

Name of the Vulnerable Software and Affected Versions: Sipwise C5 NGCP Dashboard versions prior to mr11.5.1 Description: An issue in Sipwise C5 NGCP Dashboard allows a low-privileged user to access the "Journal endpoint" by directly visiting the URL. Recommendations: For versions prior to mr11.5....

5.5CVSS6.3AI score0.00463EPSS
Exploits2References5
Rows per page
Query Builder