Lucene search
K

36 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:48 a.m.8 views

CVE-2022-31784

A vulnerability in the management interface of MiVoice Business through 9.3 PR1 and MiVoice Business Express through 8.0 SP3 PR3 could allow an unauthenticated attacker that has network access to the management interface to conduct a buffer overflow attack due to insufficient validation of URL...

9.8CVSS8AI score0.01524EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:42 a.m.9 views

CVE-2022-26143

The TP-240 aka tp240dvr component in Mitel MiCollab before 9.4 SP1 FP1 and MiVoice Business Express through 8.1 allows remote attackers to obtain sensitive information and cause a denial of service performance degradation and excessive outbound traffic. This was exploited in the wild in February...

9.8CVSS6.9AI score0.87565EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:12 a.m.8 views

CVE-2024-35315

A vulnerability in the Desktop Client of Mitel MiCollab through 9.7.1.110, and MiVoice Business Solution Virtual Instance MiVB SVI 1.0.0.25, could allow an authenticated attacker to conduct a privilege escalation attack due to improper file validation. A successful exploit could allow an attacker...

5.6CVSS7.5AI score0.00775EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/11/01 12:0 a.m.7 views

The vulnerability of the MiCollab Desktop Client client of the collaborative work platform MiCollab, along with the virtual instance of the MiVoice Business Solution Virtual Instance (MiVB SVI), allows a perpetrator to execute arbitrary code.

The vulnerability of the MiCollab Desktop Client client of the MiCollab collaboration platform, as well as the virtual instance of the MiVoice Business Solution Virtual Instance MiVB SVI, is related to the failure to take measures to neutralize special elements. Exploiting this vulnerability allo...

10CVSS5.8AI score0.01745EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/11/01 12:0 a.m.9 views

The vulnerability of the client server MiCollab of the collaborative work platform MiCollab, as well as the virtual instance of the business solution MiVoice Business Solution Virtual Instance (MiVB SVI), allows a perpetrator to execute arbitrary commands.

The vulnerability of the client server of the collaborative work platform MiCollab, as well as the virtual instance of the business solution MiVoice Business Solution Virtual Instance MiVB SVI, is related to the failure to take measures to neutralize special elements. Exploiting this vulnerabilit...

9CVSS5.8AI score0.01268EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2024/10/21 9:15 p.m.22 views

CVE-2024-41714

A vulnerability in the Web Interface component of Mitel MiCollab through 9.8 SP1 9.8.1.5 and MiVoice Business Solution Virtual Instance MiVB SVI through 1.0.0.27 could allow an authenticated attacker to conduct a command injection attack, due to insufficient parameter sanitization. A successful...

8.8CVSS0.01268EPSS
Exploits0References1
OSV
OSV
added 2024/10/21 9:15 p.m.8 views

CVE-2024-41714

A vulnerability in the Web Interface component of Mitel MiCollab through 9.8 SP1 9.8.1.5 and MiVoice Business Solution Virtual Instance MiVB SVI through 1.0.0.27 could allow an authenticated attacker to conduct a command injection attack, due to insufficient parameter sanitization. A successful...

8.8CVSS6AI score0.01268EPSS
Exploits0References1
NVD
NVD
added 2024/10/21 9:15 p.m.24 views

CVE-2024-35315

A vulnerability in the Desktop Client of Mitel MiCollab through 9.7.1.110, and MiVoice Business Solution Virtual Instance MiVB SVI 1.0.0.25, could allow an authenticated attacker to conduct a privilege escalation attack due to improper file validation. A successful exploit could allow an attacker...

5.6CVSS0.00775EPSS
Exploits0References1
CVE
CVE
added 2024/10/21 12:0 a.m.85 views

CVE-2024-35314

Affects Mitel MiCollab Desktop Client (versions ≤ 9.7.1.110) and MiVoice Business Solution Virtual Instance (MiVB SVI ≤ 1.0.0.25). The vulnerability is a command injection caused by insufficient parameter sanitization, enabling an unauthenticated attacker to execute arbitrary scripts with user in...

9.8CVSS9.8AI score0.01745EPSS
Exploits0References2Affected Software2
Vulnrichment
Vulnrichment
added 2024/10/21 12:0 a.m.17 views

CVE-2024-35315

A vulnerability in the Desktop Client of Mitel MiCollab through 9.7.1.110, and MiVoice Business Solution Virtual Instance MiVB SVI 1.0.0.25, could allow an authenticated attacker to conduct a privilege escalation attack due to improper file validation. A successful exploit could allow an attacker...

7.5AI score0.00775EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/21 12:0 a.m.15 views

CVE-2024-35314

A vulnerability in the Desktop Client of Mitel MiCollab through 9.7.1.110, and MiVoice Business Solution Virtual Instance MiVB SVI 1.0.0.25, could allow an unauthenticated attacker to conduct a command injection attack due to insufficient parameter sanitization. A successful exploit requires user...

0.01745EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/10/21 12:0 a.m.22 views

CVE-2024-35315

A vulnerability in the Desktop Client of Mitel MiCollab through 9.7.1.110, and MiVoice Business Solution Virtual Instance MiVB SVI 1.0.0.25, could allow an authenticated attacker to conduct a privilege escalation attack due to improper file validation. A successful exploit could allow an attacker...

0.00775EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/21 12:0 a.m.7 views

CVE-2024-41714

A vulnerability in the Web Interface component of Mitel MiCollab through 9.8 SP1 9.8.1.5 and MiVoice Business Solution Virtual Instance MiVB SVI through 1.0.0.27 could allow an authenticated attacker to conduct a command injection attack, due to insufficient parameter sanitization. A successful...

9.2AI score0.01268EPSS
Exploits0References1
CVE
CVE
added 2024/10/21 12:0 a.m.61 views

CVE-2024-35315

Mitel MiCollab Desktop Client (versions up to 9.7.1.110) and MiVoice Business Solution Virtual Instance (MiVB SVI) 1.0.0.25 contain a privilege-escalation flaw due to improper file validation. An authenticated, local attacker could execute arbitrary code with elevated privileges. MITRE-like impac...

5.6CVSS7.5AI score0.00775EPSS
Exploits0References1Affected Software2
Positive Technologies
Positive Technologies
added 2024/07/24 12:0 a.m.4 views

PT-2024-7493 · Mitel · Mivoice Business Solution Virtual Instance +1

Name of the Vulnerable Software and Affected Versions: Mitel MiCollab versions through 9.8 SP1 9.8.1.5 MiVoice Business Solution Virtual Instance MiVB SVI versions through 1.0.0.27 Description: A vulnerability in the Web Interface component could allow an authenticated attacker to conduct a comma...

9CVSS7.8AI score0.01268EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/05/23 12:0 a.m.4 views

PT-2024-4059 · Mitel · Mivoice Business Solution Virtual Instance +1

Name of the Vulnerable Software and Affected Versions: Mitel MiCollab versions 9.7.1.110 and earlier MiVoice Business Solution Virtual Instance MiVB SVI version 1.0.0.25 Description: A vulnerability in the Desktop Client could allow an authenticated attacker to conduct a privilege escalation atta...

6.8CVSS8.1AI score0.00775EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2024/04/16 12:0 a.m.7 views

Mitel Mivoice Business Detection

Binary data mitelmivoicebusinessdetect.nbin...

7.3AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/06/17 1:15 p.m.1 views

CVE-2022-31784

A vulnerability in the management interface of MiVoice Business through 9.3 PR1 and MiVoice Business Express through 8.0 SP3 PR3 could allow an unauthenticated attacker that has network access to the management interface to conduct a buffer overflow attack due to insufficient validation of URL...

9.8CVSS6.4AI score0.01524EPSS
Exploits0References3
OSV
OSV
added 2022/06/17 1:15 p.m.5 views

CVE-2022-31784

A vulnerability in the management interface of MiVoice Business through 9.3 PR1 and MiVoice Business Express through 8.0 SP3 PR3 could allow an unauthenticated attacker that has network access to the management interface to conduct a buffer overflow attack due to insufficient validation of URL...

9.8CVSS6.3AI score0.01524EPSS
Exploits0References2
Prion
Prion
added 2022/06/17 1:15 p.m.20 views

Buffer overflow

A vulnerability in the management interface of MiVoice Business through 9.3 PR1 and MiVoice Business Express through 8.0 SP3 PR3 could allow an unauthenticated attacker that has network access to the management interface to conduct a buffer overflow attack due to insufficient validation of URL...

6.8CVSS9.8AI score0.01524EPSS
Exploits0References2Affected Software2
Rows per page
Query Builder