Sipwise Next_generation_communication_platform
4 CVEs affecting Sipwise Next_generation_communication_platform. Latest disclosed: 2024-04-10. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-31584 | High | 8.8 | 2021-04-23 | Sipwise C5 NGCP www_csc version 3.6.4 up to and including platform NGCP CE mr3.8.13 allows call/click2dial CSRF attacks for actions with administrative privile… |
CVE-2024-28345 | Medium | 5.5 | 2024-04-10 | An issue discovered in Sipwise C5 NGCP Dashboard below mr11.5.1 allows a low privileged user to access the Journal endpoint by directly visit the URL. |
CVE-2021-31583 | Medium | 5.4 | 2021-04-23 | Sipwise C5 NGCP WWW Admin version 3.6.7 up to and including platform version NGCP CE 3.0 has multiple authenticated stored and reflected XSS vulnerabilities wh… |
CVE-2024-28344 | Low | 3.1 | 2024-04-10 | An Open Redirect vulnerability was found in Sipwise C5 NGCP Dashboard below mr11.5.1. The Open Redirect vulnerability allows attackers to control the "back" pa… |