Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mitel st 14.2 vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2018-9101
A vulnerability in the conferencing component of Mitel MiVoice Connect, versions R1707-PREM SP1 (21.84.5535.0) and previous versions, and Mitel ST 14.2, versions GA27 (19.49.5200.0) and previous versions, could allow an unauthenticated malicious user to conduct a reflected cross-...
Mitel Mivoice Connect
Mitel St 14.2
6.5
CVSSv3
CVE-2018-9102
A vulnerability in the conferencing component of Mitel MiVoice Connect, versions R1707-PREM SP1 (21.84.5535.0) and previous versions, and Mitel ST 14.2, versions GA27 (19.49.5200.0) and previous versions, could allow an unauthenticated malicious user to conduct an SQL injection a...
Mitel St 14.2
Mitel Mivoice Connect
6.1
CVSSv3
CVE-2018-9103
A vulnerability in the conferencing component of Mitel MiVoice Connect, versions R1707-PREM SP1 (21.84.5535.0) and previous versions, and Mitel ST 14.2, versions GA27 (19.49.5200.0) and previous versions, could allow an unauthenticated malicious user to conduct a reflected cross-...
Mitel St 14.2
Mitel Mivoice Connect
6.1
CVSSv3
CVE-2018-9104
A vulnerability in the conferencing component of Mitel MiVoice Connect, versions R1707-PREM SP1 (21.84.5535.0) and previous versions, and Mitel ST 14.2, versions GA27 (19.49.5200.0) and previous versions, could allow an unauthenticated malicious user to conduct a reflected cross-...
Mitel St 14.2
Mitel Mivoice Connect
9.8
CVSSv3
CVE-2018-5781
A vulnerability in the conferencing component of Mitel Connect ONSITE, versions R1711-PREM and previous versions, and Mitel ST 14.2, release GA28 and previous versions, could allow an unauthenticated malicious user to inject PHP code using specially crafted requests to the vendre...
Mitel Connect Onsite
Mitel St14.2
9.8
CVSSv3
CVE-2018-5780
A vulnerability in the conferencing component of Mitel Connect ONSITE, versions R1711-PREM and previous versions, and Mitel ST 14.2, release GA28 and previous versions, could allow an unauthenticated malicious user to inject PHP code using specially crafted requests to the vnewme...
Mitel St14.2
Mitel Connect Onsite
9.8
CVSSv3
CVE-2018-5779
A vulnerability in the conferencing component of Mitel Connect ONSITE, versions R1711-PREM and previous versions, and Mitel ST 14.2, release GA28 and previous versions, could allow an unauthenticated malicious user to copy a malicious script into a newly generated PHP file and th...
Mitel St14.2
Mitel Connect Onsite
9.8
CVSSv3
CVE-2018-5782
A vulnerability in the conferencing component of Mitel Connect ONSITE, versions R1711-PREM and previous versions, and Mitel ST 14.2, release GA28 and previous versions, could allow an unauthenticated malicious user to inject PHP code using specially crafted requests to the vsetho...
Mitel St14.2
Mitel Connect Onsite
1 Github repository
5.3
CVSSv3
CVE-2017-16250
A vulnerability in Mitel ST 14.2, release GA28 and previous versions, could allow an malicious user to use the API function to enumerate through user-ids which could be used to identify valid user ids and associated user names.
Mitel St14.2
8.8
CVSSv3
CVE-2017-16251
A vulnerability in the conferencing component of Mitel ST 14.2, release GA28 and previous versions, could allow an authenticated user to upload a malicious script to the Personal Library by a crafted POST request. Successful exploit could allow an malicious user to execute arbitr...
Mitel St14.2
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »