Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mitel mivoice office 400 vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2018-16226
A vulnerability in the web admin component of Mitel MiVoice Office 400, versions R5.0 HF3 (v8839a1) and previous versions, could allow an unauthenticated malicious user to conduct a reflected cross-site scripting (XSS) attack, due to insufficient validation for the start.asp page...
Mitel Mivoice Office 400 R5.0
9.8
CVSSv3
CVE-2023-39293
A Command Injection vulnerability has been identified in the MiVoice Office 400 SMB Controller up to and including 1.2.5.23 which could allow a malicious actor to execute arbitrary commands within the context of the system.
Mitel Mivoice Office 400
Mitel Mivoice Office 400 Smb Controller Firmware
9.8
CVSSv3
CVE-2023-39292
A SQL Injection vulnerability has been identified in the MiVoice Office 400 SMB Controller up to and including 1.2.5.23 which could allow a malicious actor to access sensitive information and execute arbitrary database and management operations.
Mitel Mivoice Office 400
Mitel Mivoice Office 400 Smb Controller Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started