Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vocera voice server vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2022-46898
An issue exists in Vocera Report Server and Voice Server 5.x up to and including 5.8. There is Path Traversal via the "restore SQL data" filename. The Vocera Report Console contains a websocket function that allows for the restoration of the database from a ZIP archive ...
Vocera Voice Server
Vocera Report Server
7.5
CVSSv3
CVE-2022-46899
An issue exists in Vocera Report Server and Voice Server 5.x up to and including 5.8. There is Arbitrary File Upload. The BaseController class, that each of the service controllers derives from, allows for the upload of arbitrary files. If the HTTP request is a multipart/form-dat...
Vocera Voice Server
Vocera Report Server
6.5
CVSSv3
CVE-2022-46900
An issue exists in Vocera Report Server and Voice Server 5.x up to and including 5.8. There is Path Traversal in the Task Exec filename. The Vocera Report Console contains various jobs that are executed on the server at specified intervals, e.g., backup, etc. An authenticated use...
Vocera Voice Server
Vocera Report Server
7.5
CVSSv3
CVE-2022-46902
An issue exists in Vocera Report Server and Voice Server 5.x up to and including 5.8. There is a Path Traversal for an Unzip operation. The Vocera Report Console contains a websocket function that allows for the restoration of the database from a ZIP archive that expects a SQL im...
Vocera Voice Server
Vocera Report Server
7.5
CVSSv3
CVE-2022-46901
An issue exists in Vocera Report Server and Voice Server 5.x up to and including 5.8. There is an Access Control Violation for Database Operations. The Vocera Report Console contains a websocket interface that allows for the unauthenticated execution of various tasks and database...
Vocera Voice Server
Vocera Report Server
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started