Lucene search
K

7 matches found

OSV
OSV
added 2020/12/18 8:15 a.m.7 views

CVE-2020-25608

The SAS portal of Mitel MiCollab before 9.2 could allow an attacker to access user credentials due to improper input validation, aka SQL Injection...

7.2CVSS7.1AI score0.00886EPSS
Exploits0References1
NVD
NVD
added 2020/12/18 8:15 a.m.23 views

CVE-2020-25608

The SAS portal of Mitel MiCollab before 9.2 could allow an attacker to access user credentials due to improper input validation, aka SQL Injection...

7.2CVSS7.2AI score0.00886EPSS
Exploits0References1
Prion
Prion
added 2020/12/18 8:15 a.m.15 views

Sql injection

The SAS portal of Mitel MiCollab before 9.2 could allow an attacker to access user credentials due to improper input validation, aka SQL Injection...

6.5CVSS7.2AI score0.00886EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/12/18 7:15 a.m.22 views

CVE-2020-25608

The SAS portal of Mitel MiCollab before 9.2 could allow an attacker to access user credentials due to improper input validation, aka SQL Injection...

7.2AI score0.00886EPSS
Exploits0References1
CVE
CVE
added 2020/12/18 7:15 a.m.51 views

CVE-2020-25608

The CVE-2020-25608 entry concerns Mitel MiCollab’s SAS portal (pre-9.2). The connected documents confirm a SQL Injection vulnerability caused by improper input validation, enabling an attacker to access user credentials. Affected component is the SAS portal; root cause is input validation failure...

7.2CVSS7.2AI score0.00886EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2020/08/26 6:15 p.m.4 views

CVE-2020-13863

The SAS portal of Mitel MiCollab before 9.1.3 could allow an attacker to access user data by performing a header injection in HTTP responses, due to the improper handling of input parameters. A successful exploit could allow an attacker to access user information...

8.1CVSS7.3AI score
Exploits0References2
NVD
NVD
added 2020/08/26 6:15 p.m.14 views

CVE-2020-13863

The SAS portal of Mitel MiCollab before 9.1.3 could allow an attacker to access user data by performing a header injection in HTTP responses, due to the improper handling of input parameters. A successful exploit could allow an attacker to access user information...

8.1CVSS8.1AI score0.0113EPSS
Exploits0References2
Rows per page
Query Builder