Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mitel vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-39285
A vulnerability in the Edge Gateway component of Mitel MiVoice Connect up to and including 19.3 SP3 (22.24.5800.0) could allow an unauthenticated malicious user to perform a Cross Site Request Forgery (CSRF) attack due to insufficient request validation. A successful exploit coul...
Mitel Mivoice Connect
NA
CVE-2023-39287
A vulnerability in the Edge Gateway component of Mitel MiVoice Connect up to and including 19.3 SP3 (22.24.5800.0) could allow an authenticated attacker with elevated privileges and internal network access to conduct a command argument injection due to insufficient parameter sani...
Mitel Mivoice Connect
NA
CVE-2023-39288
A vulnerability in the Connect Mobility Router component of Mitel MiVoice Connect up to and including 9.6.2304.102 could allow an authenticated attacker with elevated privileges and internal network access to conduct a command argument injection due to insufficient parameter sani...
Mitel Mivoice Connect
NA
CVE-2023-39289
A vulnerability in the Connect Mobility Router component of Mitel MiVoice Connect up to and including 9.6.2208.101 could allow an unauthenticated malicious user to conduct an account enumeration attack due to improper configuration. A successful exploit could allow an malicious u...
Mitel Mivoice Connect
NA
CVE-2023-39290
A vulnerability in the Edge Gateway component of Mitel MiVoice Connect through R19.3 SP3 (22.24.5800.0) could allow an authenticated attacker with elevated privileges to conduct an information disclosure attack due to improper configuration. A successful exploit could allow an ma...
Mitel Mivoice Connect
NA
CVE-2023-39291
A vulnerability in the Connect Mobility Router component of MiVoice Connect up to and including 9.6.2304.102 could allow an authenticated attacker with elevated privileges to conduct an information disclosure attack due to improper configuration. A successful exploit could allow ...
Mitel Mivoice Connect
NA
CVE-2023-25598
A vulnerability in the conferencing component of Mitel MiVoice Connect up to and including 19.3 SP2 and 20.x, 21.x, and 22.x up to and including 22.24.1500.0 could allow an unauthenticated malicious user to conduct a reflected cross-site scripting (XSS) attack due to insufficient...
Mitel Mivoice Connect
10
CVSSv2
CVE-2022-29499
The Service Appliance component in Mitel MiVoice Connect up to and including 19.2 SP3 allows remote code execution because of incorrect data validation. The Service Appliances are SA 100, SA 400, and Virtual SA.
Mitel Mivoice Connect
2 Articles
4.3
CVSSv2
CVE-2019-9591
A reflected Cross-site scripting (XSS) vulnerability in ShoreTel Connect ONSITE prior to 19.49.1500.0 allows remote malicious users to inject arbitrary web script or HTML via the brandUrl parameter.
Mitel Connect Onsite
1 EDB exploit
6
CVSSv2
CVE-2021-3176
The chat window of the Mitel BusinessCTI Enterprise (MBC-E) Client for Windows prior to 6.4.15 and 7.x prior to 7.1.2 could allow an malicious user to gain access to user information by sending certain code, due to improper input validation of http links. A successful exploit cou...
Mitel Businesscti Enterprise
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »