Ncp-e Secure_enterprise_client
8 CVEs affecting Ncp-e Secure_enterprise_client. Latest disclosed: 2025-11-26. Critical: 1, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-26155 | Critical | 9.8 | 2025-11-26 | NCP Secure Enterprise Client 13.18 and NCP Secure Entry Windows Client 13.19 have an Untrusted Search Path vulnerability. |
CVE-2023-28872 | High | 8.8 | 2023-12-25 | Support Assistant in NCP Secure Enterprise Client before 13.10 allows attackers to execute DLL files with SYSTEM privileges by creating a symbolic link from a… |
CVE-2023-28868 | High | 8.1 | 2023-12-09 | Support Assistant in NCP Secure Enterprise Client before 12.22 allows attackers to delete arbitrary files on the operating system by creating a symbolic link. |
CVE-2020-11474 | High | 7.8 | 2020-07-28 | NCP Secure Enterprise Client before 10.15 r47589 allows a symbolic link attack on enumusb.reg via Support Assistant. |
CVE-2023-28870 | Medium | 6.5 | 2023-12-09 | Insecure File Permissions in Support Assistant in NCP Secure Enterprise Client before 12.22 allow attackers to write to configuration files from low-privileged… |
CVE-2023-28869 | Medium | 6.5 | 2023-12-09 | Support Assistant in NCP Secure Enterprise Client before 12.22 allows attackers read the contents of arbitrary files on the operating system by creating a symb… |
CVE-2023-28871 | Medium | 4.3 | 2023-12-09 | Support Assistant in NCP Secure Enterprise Client before 12.22 allows attackers to read registry information of the operating system by creating a symbolic lin… |
CVE-2010-5203 | | 2012-09-06 | Multiple untrusted search path vulnerabilities in NCP Secure Enterprise Client before 9.21 Build 68, Secure Entry Client before 9.23 Build 18, and Secure Clien… |