11 matches found
CVE-2026-15376
A vulnerability was found in Eleveo Call Recording Software 9.7.0. Affected is an unknown function of the file /callrec/statisticReportAction.do. The manipulation results in improper authorization. The attack can be launched remotely. The exploit has been made public and could be used. The vendor...
CVE-2026-15375
A vulnerability has been found in Eleveo Call Recording Software 9.7.0. This impacts an unknown function of the file /callrec/usersldap.jsp of the component LDAP User Interface. The manipulation leads to improper authorization. The attack can be initiated remotely. The exploit has been disclosed ...
CVE-2026-15374
A flaw has been found in Eleveo Call Recording Software 9.7.0. This affects an unknown function of the file /callrec/roleAddAction.do of the component Group Interface. Executing a manipulation can lead to improper authorization. It is possible to launch the attack remotely. The exploit has been...
CVE-2026-15377 Eleveo Call Recording Software sendlogfile improper authorization
A vulnerability was determined in Eleveo Call Recording Software 9.7.0. Affected by this vulnerability is an unknown functionality of the file /callrec/sendlogfile. This manipulation causes improper authorization. The attack may be initiated remotely. The exploit has been publicly disclosed and m...
CVE-2026-15377
Technical details about CVE-2026-15377 are not publicly available in the provided documents; monitor for future updates.
CVE-2026-15376
CVE-2026-15376 affects Eleveo Call Recording Software 9.7.0. The vulnerability targets an unknown function in /callrec/statisticReportAction.do, leading to improper authorization that can be exploited remotely. Public exploit details exist. Metrics (VulDB) show CVSS scores around 5.3–6.5 (MEDIUM)...
CVE-2026-15375
CVE-2026-15375 affects Eleveo Call Recording Software 9.7.0, targeting the LDAP User Interface component via the file /callrec/users_ldap.jsp. The issue is described as improper authorization, with remote initiation possible and public exploit disclosure. The record notes that the vendor was cont...
CVE-2026-15374
Technical details beyond the initial description are not publicly available in the provided documents. Monitor for updates on CVE-2026-15374 affecting Eleveo Call Recording Software 9.7.0, specifically the /callrec/roleAddAction.do improper authorization vulnerability.
CVE-2026-15374 Eleveo Call Recording Software Group roleAddAction.do improper authorization
A flaw has been found in Eleveo Call Recording Software 9.7.0. This affects an unknown function of the file /callrec/roleAddAction.do of the component Group Interface. Executing a manipulation can lead to improper authorization. It is possible to launch the attack remotely. The exploit has been...
CVE-2026-15373 Eleveo Call Recording Software userAddAction.do improper authorization
A vulnerability was detected in Eleveo Call Recording Software 9.7.0. The impacted element is an unknown function of the file /callrec/userAddAction.do. Performing a manipulation of the argument role results in improper authorization. It is possible to initiate the attack remotely. The exploit is...
CVE-2026-15373
CVE-2026-15373 affects Eleveo Call Recording Software 9.7.0. The vulnerability lies in an unknown function of the file /callrec/userAddAction.do, where manipulating the argument role enables improper authorization. It can be started remotely, and the exploit is public. Vendor response was not pro...