Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mitel mivoice connect vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-10377
A weak encryption vulnerability in Mitel MiVoice Connect Client prior to 214.100.1214.0 could allow an unauthenticated malicious user to gain access to user credentials. A successful exploit could allow an malicious user to access the system with compromised user credentials.
Mitel Mivoice Connect
Mitel Mivoice Connect Client
7.4
CVSSv3
CVE-2023-25599
A vulnerability in the conferencing component of Mitel MiVoice Connect up to and including 19.3 SP2, 22.24.1500.0 could allow an unauthenticated malicious user to conduct a reflected cross-site scripting (XSS) attack due to insufficient validation for the test_presenter.php page....
Mitel Mivoice Connect
Mitel Mivoice Connect 19.3
6.8
CVSSv3
CVE-2022-40765
A vulnerability in the Edge Gateway component of Mitel MiVoice Connect up to and including 19.3 (22.22.6100.0) could allow an authenticated attacker with internal network access to conduct a command-injection attack, due to insufficient restriction of URL parameters.
Mitel Mivoice Connect
Mitel Mivoice Connect 19.3
6.8
CVSSv3
CVE-2022-41223
The Director database component of MiVoice Connect up to and including 19.3 (22.22.6100.0) could allow an authenticated malicious user to conduct a code-injection attack via crafted data due to insufficient restrictions on the database data type.
Mitel Mivoice Connect
Mitel Mivoice Connect 19.3
9.8
CVSSv3
CVE-2020-10211
A remote code execution vulnerability in UCB component of Mitel MiVoice Connect prior to 19.1 SP1 could allow an unauthenticated remote malicious user to execute arbitrary scripts due to insufficient validation of URL parameters. A successful exploit could allow an malicious user...
Mitel Mivoice Connect
Mitel Mivoice Connect Client
6.1
CVSSv3
CVE-2018-9103
A vulnerability in the conferencing component of Mitel MiVoice Connect, versions R1707-PREM SP1 (21.84.5535.0) and previous versions, and Mitel ST 14.2, versions GA27 (19.49.5200.0) and previous versions, could allow an unauthenticated malicious user to conduct a reflected cross-...
Mitel St 14.2
Mitel Mivoice Connect
6.1
CVSSv3
CVE-2018-9104
A vulnerability in the conferencing component of Mitel MiVoice Connect, versions R1707-PREM SP1 (21.84.5535.0) and previous versions, and Mitel ST 14.2, versions GA27 (19.49.5200.0) and previous versions, could allow an unauthenticated malicious user to conduct a reflected cross-...
Mitel St 14.2
Mitel Mivoice Connect
6.1
CVSSv3
CVE-2018-9101
A vulnerability in the conferencing component of Mitel MiVoice Connect, versions R1707-PREM SP1 (21.84.5535.0) and previous versions, and Mitel ST 14.2, versions GA27 (19.49.5200.0) and previous versions, could allow an unauthenticated malicious user to conduct a reflected cross-...
Mitel Mivoice Connect
Mitel St 14.2
6.5
CVSSv3
CVE-2018-9102
A vulnerability in the conferencing component of Mitel MiVoice Connect, versions R1707-PREM SP1 (21.84.5535.0) and previous versions, and Mitel ST 14.2, versions GA27 (19.49.5200.0) and previous versions, could allow an unauthenticated malicious user to conduct an SQL injection a...
Mitel St 14.2
Mitel Mivoice Connect
6.1
CVSSv3
CVE-2023-25598
A vulnerability in the conferencing component of Mitel MiVoice Connect up to and including 19.3 SP2 and 20.x, 21.x, and 22.x up to and including 22.24.1500.0 could allow an unauthenticated malicious user to conduct a reflected cross-site scripting (XSS) attack due to insufficient...
Mitel Mivoice Connect
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »