Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mitel vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-31964
A vulnerability on Mitel 6800 Series and 6900 Series SIP Phones, including 6970 Conference Unit, up to and including 6.3 SP3 HF4 allows an unauthenticated malicious user to conduct an authentication bypass attack due to improper authentication control. A successful exploit could ...
NA
CVE-2024-31966
A vulnerability on Mitel 6800 Series and 6900 Series SIP Phones, including 6970 Conference Unit, up to and including 6.3 SP3 HF4 allows an authenticated attacker with administrative privilege to conduct an argument injection attack due to insufficient parameter sanitization. A su...
NA
CVE-2024-31967
A vulnerability on Mitel 6800 Series and 6900 Series SIP Phones, including 6970 Conference Unit, up to and including 6.3 SP3 HF4 allows an unauthenticated malicious user to conduct an unauthorized access attack due to improper access control. A successful exploit could allow an m...
NA
CVE-2024-31963
A vulnerability on Mitel 6800 Series and 6900 Series SIP Phones, including 6970 Conference Unit, up to and including 6.3 SP3 HF4 allows an authenticated malicious user to conduct a buffer overflow attack due to insufficient bounds checking and input sanitization. A successful exp...
NA
CVE-2024-31965
A vulnerability on Mitel 6800 Series and 6900 Series SIP Phones, including 6970 Conference Unit, up to and including 6.3 SP3 HF4 allows an authenticated attacker with administrative privilege to conduct a path traversal attack due to insufficient input validation. A successful ex...
NA
CVE-2024-28815
A vulnerability in the BluStar component of Mitel InAttend 2.6 SP4 up to and including 2.7 and CMG 8.5 SP4 up to and including 8.6 could allow access to sensitive information, changes to the system configuration, or execution of arbitrary commands within the context of the system...
NA
CVE-2024-28069
A vulnerability in the legacy chat component of Mitel MiContact Center Business up to and including 10.0.0.4 could allow an unauthenticated malicious user to conduct an information disclosure attack due to improper configuration. A successful exploit could allow an malicious user...
NA
CVE-2024-28070
A vulnerability in the legacy chat component of Mitel MiContact Center Business up to and including 10.0.0.4 could allow an unauthenticated malicious user to conduct a reflected cross-site scripting (XSS) attack due to insufficient input validation. A successful exploit could all...
NA
CVE-2023-40265
An issue exists in Atos Unify OpenScape Xpressions WebAssistant V7 before V7R1 FR5 HF42 P911. It allows authenticated remote code execution via file upload.
Mitel Unify Openscape Xpressions Webassistant
NA
CVE-2023-40266
An issue exists in Atos Unify OpenScape Xpressions WebAssistant V7 before V7R1 FR5 HF42 P911. It allows path traversal.
Mitel Unify Openscape Xpressions Webassistant
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »