cbcvebase.

Gfi Kerio Control vulnerabilities

5 known vulnerabilities affecting gfi/kerio_control.

Total CVEs
5
CISA KEV
0
Public exploits
1
Exploited in wild
1
Severity breakdown
CRITICAL3HIGH1MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2024-52875P1HIGHCVSS 8.8ExploitedPoC≥ 9.2.5, ≤ 9.4.52025-01-31
CVE-2024-52875 [HIGH] CWE-113 CVE-2024-52875: An issue was discovered in GFI Kerio Control 9.2.5 through 9.4.5. The dest GET parameter passed to t An issue was discovered in GFI Kerio Control 9.2.5 through 9.4.5. The dest GET parameter passed to the /nonauth/addCertException.cs and /nonauth/guestConfirm.cs and /nonauth/expiration.cs pages is not properly sanitized before being used to generate a Location HTTP header in a 302 HTTP response. This can be exploited to perform Open Redirect or HTTP R
nvd
CVE-2025-34070P2CRITICALCVSS 9.8v9.4.52025-07-02
CVE-2025-34070 [CRITICAL] CWE-306 CVE-2025-34070: A missing authentication vulnerability in the GFIAgent component of GFI Kerio Control 9.4.5 allows u A missing authentication vulnerability in the GFIAgent component of GFI Kerio Control 9.4.5 allows unauthenticated remote attackers to perform privileged operations. The GFIAgent service, responsible for integration with GFI AppManager, exposes HTTP services on ports 7995 and 7996 without proper authentication. The /proxy handler on port 7996 allo
nvd
CVE-2025-34069P2CRITICALCVSS 9.8v9.4.52025-07-02
CVE-2025-34069 [CRITICAL] CWE-306 CVE-2025-34069: An authentication bypass vulnerability exists in GFI Kerio Control 9.4.5 due to insecure default pro An authentication bypass vulnerability exists in GFI Kerio Control 9.4.5 due to insecure default proxy configuration and weak access control in the GFIAgent service. The non-transparent proxy on TCP port 3128 can be used to forward unauthenticated requests to internal services such as GFIAgent, bypassing firewall restrictions and exposing internal
nvd
CVE-2025-34071P2CRITICALCVSS 9.8v9.4.52025-07-02
CVE-2025-34071 [CRITICAL] CWE-306 CVE-2025-34071: A remote code execution vulnerability in GFI Kerio Control 9.4.5 allows attackers with administrativ A remote code execution vulnerability in GFI Kerio Control 9.4.5 allows attackers with administrative access to upload and execute arbitrary code through the firmware upgrade feature. The system upgrade mechanism accepts unsigned .img files, which can be modified to include malicious scripts within the upgrade.sh or disk image components. These mo
nvd
CVE-2019-16414P4MEDIUMCVSS 6.1v9.3.02019-09-30
CVE-2019-16414 [MEDIUM] CWE-79 CVE-2019-16414: A DOM based XSS in GFI Kerio Control v9.3.0 allows embedding of malicious code and manipulating the A DOM based XSS in GFI Kerio Control v9.3.0 allows embedding of malicious code and manipulating the login page to send back a victim's cleartext credentials to an attacker via a login/?reason=failure&NTLM= URI.
nvd
Gfi Kerio Control vulnerabilities | cvebase