CVE-2025-34071 | GFI Kerio Control 9.4.5 upgrade.sh missing authentication

Inserito da Angelo Barbosa | Lug 2, 2025 | CVE

A vulnerability, which was classified as critical, was found in GFI Kerio Control 9.4.5. Affected is an unknown function of the file upgrade.sh. The manipulation leads to missing authentication.

This vulnerability is traded as CVE-2025-34071. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-34071 | GFI Kerio Control 9.4.5 upgrade.sh missing authentication

Post correlati

CVE-2024-12483 | Dromara UJCMS up to 9.6.3 User ID /users/id authorization

CVE-2024-38447 | NATO NCI ANET 3.4.1 Draft Report ID resource injection

CVE-2024-4841 | parisneo lollms-webui up to 9.6 HTTP Request add_reference_to_local_model add_reference_to_local_mode path path traversal

CVE-2025-1402 | theeventscalendar Event Tickets and Registration Plugin up to 5.19.1.1 on WordPress ajax_ticket_delete authorization