NULL Pointer Dereference in Alinto SOPE SOGo Affects Multiple Versions
CVE-2025-53603
Currently unrated
What is CVE-2025-53603?
A vulnerability exists in Alinto SOPE SOGo versions ranging from 2.0.2 to 5.12.2 that allows for a NULL pointer dereference, potentially crashing the system. This issue arises when a query string contains a parameter that is a duplicate of one in the POST body, leading to unintended application behavior. Users of affected versions should seek to apply updates or patches to mitigate this risk.