Richard Medlin

#6741of 53,632
40.1Total CVSS
Vulnerabilities · 5
High
4
Critical
1
PT-2026-2730
7.8
2026-01-13
Microsoft · Windows Ntlm · CVE-2026-20925
**Name of the Vulnerable Software and Affected Versions** Windows NTLM (affected versions not specified) **Description** An issue exists within Windows NTLM that allows for external control of file names or paths. This can enable an unauthorized attacker to perform spoofing over a network. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2025-52671
7.5
2025-12-22
Unknown · Gt Edge Ai Platform · CVE-2025-63662
**Name of the Vulnerable Software and Affected Versions** GT Edge AI Platform versions prior to 2.0.10-dev **Description** The /api/v1/agents API in GT Edge AI Platform has insecure permissions, potentially allowing unauthorized access to sensitive information. The API endpoint ''/api/v1/agents'' is affected. **Recommendations** Update GT Edge AI Platform to version 2.0.10-dev or later.
PT-2025-52672
7.5
2025-12-22
Unknown · Gt Edge Ai Platform · CVE-2025-63663
**Name of the Vulnerable Software and Affected Versions** GT Edge AI Platform versions prior to 2.0.10 **Description** An access control issue exists in the `/api/v1/conversations/*/files` API of GT Edge AI Platform. This allows unauthorized access to files uploaded by other users. The vulnerable parameter is the file identifier within the API endpoint. **Recommendations** Update GT Edge AI Platform to version 2.0.10 or later.
PT-2025-52673
7.5
2025-12-22
Unknown · Gt Edge Ai Platform · CVE-2025-63664
**Name of the Vulnerable Software and Affected Versions** GT Edge AI Platform versions prior to 2.0.10-dev **Description** An access control issue exists in the `/api/v1/conversations/*/messages` API of GT Edge AI Platform. This allows unauthorized access to message history with AI agents belonging to other users. The `conversations` and `messages` variables within the API endpoint are involved in this issue. **Recommendations** Update to version 2.0.10-dev or later.
PT-2025-52498
9.8
2025-12-19
Unknown · Gt Edge Ai Platform · CVE-2025-63665
**Name of the Vulnerable Software and Affected Versions** GT Edge AI Platform versions prior to 2.0.10-dev **Description** An issue in GT Edge AI Platform allows attackers to execute arbitrary code by injecting a crafted JSON payload into the Prompt window. The vulnerability involves the potential for code execution through manipulation of the input provided to the application. **Recommendations** Update GT Edge AI Platform to version 2.0.10-dev or later.