Secure Enterprise Client Security Vulnerabilities and Issues — Secure Enterprise Client CVE List

Ncp-eSecure Enterprise Client

8 matches found

CVE•added 2020/07/28 8:34 p.m.•48 views

CVE-2020-11474

CVE-2020-11474 affects NCP Secure Enterprise Client prior to 10.15 r47589. Description: a symbolic link attack on enumusb.reg via Support Assistant. The records indicate local access threat with low attack complexity and no user interaction required, with potential partial confidentiality, integr...

7.8CVSS7.5AI score0.00531EPSS

CVE•added 2023/12/09 12:0 a.m.•45 views

CVE-2023-28870

CVE-2023-28870 affects the NCP Secure Enterprise Client (Support Assistant) prior to version 12.22. The vulnerability stems from insecure file permissions that allow low-privileged users to write to configuration files, enabling potential manipulation of client configuration. Exploitation details...

6.5CVSS6.4AI score0.00701EPSS

CVE•added 2023/12/09 12:0 a.m.•42 views

CVE-2023-28868

The vulnerability CVE-2023-28868 affects NCP Secure Enterprise Client, specifically the Support Assistant component, and exists in versions prior to 12.22. The root cause is a flaw in the Support Assistant that enables an attacker to delete arbitrary files on the operating system by abusing symbo...

8.1CVSS7.9AI score0.00852EPSS

CVE•added 2012/09/06 10:0 a.m.•41 views

CVE-2010-5203

CVE-2010-5203 affects NCP Secure Enterprise Client before 9.21 Build 68, Secure Entry Client before 9.23 Build 18, and Secure Client – Juniper Edition before 9.23 Build 18. The issue is an untrusted search path privilege escalation where local users can gain privileges via Trojan horse files in t...

6.9CVSS6.9AI score0.00348EPSS

CVE•added 2023/12/25 12:0 a.m.•40 views

CVE-2023-28872

CVE-2023-28872 affects NCP Secure Enterprise Client prior to version 13.10. The vulnerability originates in the Support Assistant component, where an attacker can cause DLLs to run with SYSTEM privileges by exploiting a symbolic link at %LOCALAPPDATA%\Temp\NcpSupport*. Impact: potential privilege...

8.8CVSS8.6AI score0.00774EPSS

CVE•added 2023/12/09 12:0 a.m.•35 views

CVE-2023-28871

The CVE-2023-28871 issue affects the Support Assistant component of NCP Secure Enterprise Client (versions prior to 12.22). The root cause is a vulnerability in the Support Assistant that allows an attacker to read OS registry information by abusing symbolic links. Impact is limited to reading re...

4.3CVSS4.3AI score0.00594EPSS

CVE•added 2023/12/09 12:0 a.m.•30 views

CVE-2023-28869

The CVE affects NCP Secure Enterprise Client, specifically versions prior to 12.22, where the Support Assistant feature can be abused to read arbitrary files by creating a symbolic link. The underlying issue is tied to the Support Assistant component in the client, enabling an attacker with netwo...

6.5CVSS6.3AI score0.00768EPSS

CVE•added 2025/11/26 12:0 a.m.•12 views

CVE-2025-26155

CVE-2025-26155 affects NCP Secure Enterprise Client 13.18 and NCP Secure Entry Windows Client 13.19. The issue is an Untrusted Search Path vulnerability in these Windows clients. Connected sources confirm the affected versions and root cause; no exploit details or attacker techniques are provided...

9.8CVSS6.6AI score0.00479EPSS