Vulnerabilities > Akamai
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-04 | CVE-2024-45164 | Incorrect Authorization vulnerability in Akamai Secure Internet Access Enterprise Threatavert 19.2.0.2 Akamai SIA (Secure Internet Access Enterprise) ThreatAvert, in SPS (Security and Personalization Services) before the latest 19.2.0 patch and Apps Portal before 19.2.0.3 or 19.2.0.20240814, has incorrect authorization controls for the Admin functionality on the ThreatAvert Policy page. | 7.1 |
| 2021-10-04 | CVE-2021-40683 | Unquoted Search Path or Element vulnerability in Akamai Enterprise Application Access 2.0.1/2.4.0 In Akamai EAA (Enterprise Application Access) Client before 2.3.1, 2.4.x before 2.4.1, and 2.5.x before 2.5.3, an unquoted path may allow an attacker to hijack the flow of execution. | 7.8 |
| 2020-08-26 | CVE-2019-18847 | Improper Certificate Validation vulnerability in Akamai Enterprise Application Access Enterprise Access Client Auto-Updater allows for Remote Code Execution prior to version 2.0.1. | 9.8 |
| 2019-06-21 | CVE-2019-11011 | Deserialization of Untrusted Data vulnerability in Akamai Cloudtest Akamai CloudTest before 58.30 allows remote code execution. | 9.8 |
| 2017-01-23 | CVE-2016-10157 | Code Injection vulnerability in Akamai Netsession 1.9.3.1 Akamai NetSession 1.9.3.1 is vulnerable to DLL Hijacking: it tries to load CSUNSAPI.dll without supplying the complete path. | 9.8 |