Incorrect Access Control Vulnerability in Desktop Alert PingAlert Application Server
CVE-2025-54339

10CRITICAL

Key Information:

Vendor: Desktop Alert
Status: PingAlert
Vendor: CVE Published:; 14 November 2025

🔔 Create Desktop Alert Vulnerability Alert

What is CVE-2025-54339?

A vulnerability has been identified in the Application Server of Desktop Alert's PingAlert, specifically affecting versions 6.1.0.11 through 6.1.1.2. This fault allows an unauthorized user to exploit access control mechanisms remotely, leading to potential escalation of privileges. As a result, attackers may gain elevated access to sensitive system components, posing significant risks to data integrity and security.

References

https://desktopalert.net

https://desktopalert.net/cve-2025-54339/

CVSS V3.1

Score:

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 14, 2025
Vulnerability Reserved
Jul 21, 2025

JSON