Micha Borrmann

**Name of the Vulnerable Software and Affected Versions** REDDOXX MailDepot version 2032 SP2 2.2.1242 **Description** The issue is related to insufficient session expiration, where tokens are not invalidated upon logout. This can potentially allow unauthorized access to user sessions. **Recommendations** For REDDOXX MailDepot version 2032 SP2 2.2.1242, consider implementing a custom session invalidation mechanism upon user logout as a temporary workaround until a patch is available. Restrict access to sensitive features that rely on session tokens to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Citrix Gateway versions 11.1 through 12.1 **Description** The issue allows Information Exposure Through Caching. The `Via` header lists cache protocols and recipients between the start and end points for a request or a response. The `Age` header provides the age of the cached response in seconds. Both headers are commonly used for proxy cache and the information is not sensitive. Citrix disputes this as not a vulnerability, stating there is no sensitive information disclosure through the cache headers on Citrix ADC. **Recommendations** For Citrix Gateway versions 11.1 through 12.1, as a temporary workaround, consider restricting access to the cache headers to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Citrix Gateway versions 11.1 through 12.1 **Description** The issue concerns an Inconsistent Interpretation of HTTP Requests. It is noted that Citrix disputes the reported behavior as not a security issue, stating that Citrix ADC only caches HTTP/1.1 traffic for performance optimization. **Recommendations** For Citrix Gateway versions 11.1 through 12.1, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Citrix Gateway versions 11.1 through 12.1 **Description** The issue allows Cache Poisoning. By default, Citrix ADC only caches static content served under certain URL paths for Citrix Gateway usage. No dynamic content is served under these paths, which implies that those cached pages would not change based on parameter values. All other data traffic going through Citrix Gateway are NOT cached by default. Citrix disputes this as not a vulnerability. **Recommendations** For Citrix Gateway versions 11.1 through 12.1, consider disabling the caching feature for static content served under certain URL paths as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Kentix MultiSensor-LAN versions prior to 5.63.00 **Description** The issue allows Authentication Bypass via an Alternate Path or Channel. **Recommendations** For versions prior to 5.63.00, update to version 5.63.00 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** HMS Industrial Networks Netbiter WS100 versions prior to 3.30.6 **Description** The issue concerns reflected XSS in the login form. **Recommendations** For versions prior to 3.30.6, update to version 3.30.6 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Polycom VVX 500 and 601 devices versions 5.8.0.12848 and earlier **Description** The issue allows man-in-the-middle attackers to obtain sensitive credential information by leveraging failure to validate X.509 certificates when used with an on-premise installation with Skype for Business. **Recommendations** For Polycom VVX 500 and 601 devices versions 5.8.0.12848 and earlier, update to a version later than 5.8.0.12848 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Polycom VVX 500 and 601 devices versions 5.8.0.12848 and earlier **Description** The issue allows remote attackers to obtain sensitive phone configuration information by leveraging use with an on-premise installation with Skype for Business. This is related to the SIP service in the affected devices. **Recommendations** For Polycom VVX 500 and 601 devices versions 5.8.0.12848 and earlier, update to a version later than 5.8.0.12848 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Gästebuch versions prior to 1.3.3 **Description** The issue allows remote attackers to inject arbitrary web script or HTML via the URL, specifically in the homepage parameter of eintrag.php, potentially leading to cross-site scripting. **Recommendations** For versions prior to 1.3.3, update to version 1.3.3 or later to resolve the issue.