Lucene search
K

11 matches found

NVD
NVD
added 2 hours ago4 views

CVE-2026-15376

A vulnerability was found in Eleveo Call Recording Software 9.7.0. Affected is an unknown function of the file /callrec/statisticReportAction.do. The manipulation results in improper authorization. The attack can be launched remotely. The exploit has been made public and could be used. The vendor...

6.5CVSS
Exploits0References5
NVD
NVD
added 3 hours ago3 views

CVE-2026-15375

A vulnerability has been found in Eleveo Call Recording Software 9.7.0. This impacts an unknown function of the file /callrec/usersldap.jsp of the component LDAP User Interface. The manipulation leads to improper authorization. The attack can be initiated remotely. The exploit has been disclosed ...

5.3CVSS
Exploits0References5
NVD
NVD
added 3 hours ago5 views

CVE-2026-15374

A flaw has been found in Eleveo Call Recording Software 9.7.0. This affects an unknown function of the file /callrec/roleAddAction.do of the component Group Interface. Executing a manipulation can lead to improper authorization. It is possible to launch the attack remotely. The exploit has been...

6.5CVSS
Exploits0References5
Cvelist
Cvelist
added 3 hours ago3 views

CVE-2026-15377 Eleveo Call Recording Software sendlogfile improper authorization

A vulnerability was determined in Eleveo Call Recording Software 9.7.0. Affected by this vulnerability is an unknown functionality of the file /callrec/sendlogfile. This manipulation causes improper authorization. The attack may be initiated remotely. The exploit has been publicly disclosed and m...

5.3CVSS
Exploits0References5
CVE
CVE
added 3 hours ago4 views

CVE-2026-15377

Technical details about CVE-2026-15377 are not publicly available in the provided documents; monitor for future updates.

5.3CVSS5.9AI score
Exploits0References5
CVE
CVE
added 4 hours ago6 views

CVE-2026-15376

CVE-2026-15376 affects Eleveo Call Recording Software 9.7.0. The vulnerability targets an unknown function in /callrec/statisticReportAction.do, leading to improper authorization that can be exploited remotely. Public exploit details exist. Metrics (VulDB) show CVSS scores around 5.3–6.5 (MEDIUM)...

6.5CVSS6.3AI score
Exploits0References5
CVE
CVE
added 4 hours ago4 views

CVE-2026-15375

CVE-2026-15375 affects Eleveo Call Recording Software 9.7.0, targeting the LDAP User Interface component via the file /callrec/users_ldap.jsp. The issue is described as improper authorization, with remote initiation possible and public exploit disclosure. The record notes that the vendor was cont...

5.3CVSS5.6AI score
Exploits0References5
CVE
CVE
added 4 hours ago3 views

CVE-2026-15374

Technical details beyond the initial description are not publicly available in the provided documents. Monitor for updates on CVE-2026-15374 affecting Eleveo Call Recording Software 9.7.0, specifically the /callrec/roleAddAction.do improper authorization vulnerability.

6.5CVSS6.3AI score
Exploits0References5
Cvelist
Cvelist
added 4 hours ago3 views

CVE-2026-15374 Eleveo Call Recording Software Group roleAddAction.do improper authorization

A flaw has been found in Eleveo Call Recording Software 9.7.0. This affects an unknown function of the file /callrec/roleAddAction.do of the component Group Interface. Executing a manipulation can lead to improper authorization. It is possible to launch the attack remotely. The exploit has been...

6.5CVSS
Exploits0References5
Cvelist
Cvelist
added 5 hours ago4 views

CVE-2026-15373 Eleveo Call Recording Software userAddAction.do improper authorization

A vulnerability was detected in Eleveo Call Recording Software 9.7.0. The impacted element is an unknown function of the file /callrec/userAddAction.do. Performing a manipulation of the argument role results in improper authorization. It is possible to initiate the attack remotely. The exploit is...

6.5CVSS
Exploits0References5
CVE
CVE
added 5 hours ago4 views

CVE-2026-15373

CVE-2026-15373 affects Eleveo Call Recording Software 9.7.0. The vulnerability lies in an unknown function of the file /callrec/userAddAction.do, where manipulating the argument role enables improper authorization. It can be started remotely, and the exploit is public. Vendor response was not pro...

6.5CVSS6.5AI score
Exploits0References5
Rows per page
Query Builder