1. Home
  2. CVE Database
  3. CVE-2025-54339
CRITICAL · 10.0

CVE-2025-54339

An Incorrect Access Control vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 exploitable remotely for Escalation of Privileges.

Vulnerability Description

An Incorrect Access Control vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 exploitable remotely for Escalation of Privileges.

CVSS Score

10.0

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
LOW

Affected Products

VendorProductVersions
DesktopalertPingalert Application Server>= 6.1.0.11, < 6.1.1.4

Related Weaknesses (CWE)

CWE-284

References

FAQ

What is CVE-2025-54339?

CVE-2025-54339 is a vulnerability with a CVSS score of 10.0 (CRITICAL). An Incorrect Access Control vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 exploitable remotely for Escalation of Privileges.

How severe is CVE-2025-54339?

CVE-2025-54339 has been rated CRITICAL with a CVSS base score of 10.0/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2025-54339?

Check the references section above for vendor advisories and patch information. Affected products include: Desktopalert Pingalert Application Server.