We’d love your feedback! Only 3 short questions and 5 min of your time. Take the short survey →

Trial
Request Demo

Security Advisories: CVE-2025-54341

A vulnerability was found in the Application Server of Desktop Alert version 6.1.0.11 to 6.1.1.5. There are Hard-coded configuration values.

Vulnerability Type(CWE-798) Use of Hard-coded configuration values
CVE IdentifierCVE-2025-54341
CVSS Score6.5
CVSS Vector(CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N)
VendorDesktop Alert
Affected ProductPingAlert Application Server
Affected Versions6.1.0.11 – 6.1.1.5
AttackerNon-authenticated user 
ImpactInformation Disclosure
MitigationFixed in version 6.1.1.6

We would like to thank NATO Cyber Security Centre (NCSC) for their assistance in uncovering and addressing this vulnerability, in particular Roberto Suggi Liverani NCIA/NCSC and Justin Hocquel NCIA/NCSC.