Critical severity10.0NVD Advisory· Published May 27, 2025· Updated Jun 17, 2026
CVE-2025-32440
CVE-2025-32440
Description
NetAlertX is a network, presence scanner and alert framework. Prior to version 25.4.14, it is possible to bypass the authentication mechanism of NetAlertX to update settings without authentication. An attacker can trigger sensitive functions within util.php by sending crafted requests to /index.php. This issue has been patched in version 25.4.14.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- jokob-sk/NetAlertXv5Range: < 25.4.14
Patches
Vulnerability mechanics
References
2- github.com/jokob-sk/NetAlertX/security/advisories/GHSA-h4x5-vr54-vjrxnvdVendor Advisory
- github.com/jokob-sk/NetAlertX/releases/tag/v25.4.14nvdRelease Notes
News mentions
0No linked articles in our index yet.