CVE-2025-54561

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2025-54561

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-54561.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2025-54561

Published

2025-11-14T18:15:49.527Z

Modified

2026-03-13T03:33:19.407665Z

Severity

4.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N CVSS Calculator

Summary

[none]

Details

An Incorrect Access Control vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows remote access to content despite lack of the correct permission through a Broken Authorization Schema.

References

Affected packages

Git /

Affected ranges

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-54561.json"

unresolved_ranges

[
    {
        "events": [
            {
                "introduced": "6.1.0.11"
            },
            {
                "fixed": "6.1.1.5"
            }
        ]
    }
]