Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
micollab vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2020-25606
The AWV component of Mitel MiCollab prior to 9.2 could allow an malicious user to view system information by sending arbitrary code due to improper input validation, aka XSS.
Mitel Micollab
445
VMScore
CVE-2020-25610
The AWV component of Mitel MiCollab prior to 9.2 could allow an malicious user to gain access to a web conference due to insufficient access control for conference codes.
Mitel Micollab
356
VMScore
CVE-2020-25612
The NuPoint Messenger of Mitel MiCollab prior to 9.2 could allow an attacker with escalated privilege to access user files due to insufficient access control. Successful exploit could potentially allow an malicious user to gain access to sensitive information.
Mitel Micollab
NA
CVE-2022-36452
A vulnerability in the web conferencing component of Mitel MiCollab up to and including 9.5.0.101 could allow an unauthenticated malicious user to upload malicious files. A successful exploit could allow an malicious user to execute arbitrary code within the context of the applic...
Mitel Micollab
NA
CVE-2022-36453
A vulnerability in the MiCollab Client API of Mitel MiCollab 9.1.3 up to and including 9.5.0.101 could allow an authenticated malicious user to modify their profile parameters due to improper authorization controls. A successful exploit could allow the authenticated malicious use...
Mitel Micollab
NA
CVE-2022-36454
A vulnerability in the MiCollab Client API of Mitel MiCollab up to and including 9.5.0.101 could allow an authenticated malicious user to modify their profile parameters due to improper authorization controls. A successful exploit could allow the authenticated malicious user to i...
Mitel Micollab
516
VMScore
CVE-2020-27340
The online help portal of Mitel MiCollab prior to 9.2 could allow an malicious user to redirect a user to an unauthorized website by executing malicious script due to insufficient access control.
Mitel Micollab
NA
CVE-2022-36451
A vulnerability in the MiCollab Client server component of Mitel MiCollab up to and including 9.5.0.101 could allow an authenticated malicious user to conduct a Server-Side Request Forgery (SSRF) attack due to insufficient restriction of URL parameters. A successful exploit could...
Mitel Micollab
578
VMScore
CVE-2020-25608
The SAS portal of Mitel MiCollab prior to 9.2 could allow an malicious user to access user credentials due to improper input validation, aka SQL Injection.
Mitel Micollab
312
VMScore
CVE-2020-25609
The NuPoint Messenger Portal of Mitel MiCollab prior to 9.2 could allow an authenticated malicious user to execute arbitrary scripts due to insufficient input validation, aka XSS. A successful exploit could allow an malicious user to view and modify user data.
Mitel Micollab
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
race condition
CVE-2024-4249
CVE-2024-4244
CVE-2023-20198
TCP
CVE-2022-48648
CVE-2022-48636
CVE-2024-21345
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »