Adrian Tuchel

#30400of 53,634
8.6Total CVSS
Vulnerabilities · 2
Low
1
Medium
1
PT-2024-22398
3.1
2024-04-10
Sipwise · Sipwise C5 Ngcp Dashboard · CVE-2024-28344
**Name of the Vulnerable Software and Affected Versions** Sipwise C5 NGCP Dashboard versions prior to mr11.5.1 **Description** An Open Redirect issue was found, allowing attackers to control the `back` parameter in the URL through a double encoded URL. This enables attackers to redirect users to unintended locations. **Recommendations** For versions prior to mr11.5.1, update to version mr11.5.1 or later to resolve the issue. As a temporary workaround, consider restricting user access to the vulnerable URL parameter `back` to minimize the risk of exploitation.
PT-2024-22399
5.5
2024-04-10
Sipwise · Sipwise C5 Ngcp Dashboard · CVE-2024-28345
**Name of the Vulnerable Software and Affected Versions** Sipwise C5 NGCP Dashboard versions prior to mr11.5.1 **Description** An issue in Sipwise C5 NGCP Dashboard allows a low-privileged user to access the "Journal endpoint" by directly visiting the URL. **Recommendations** For versions prior to mr11.5.1, update to version mr11.5.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the Journal endpoint until a patch is available.