Lucene search
K

113 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:26 p.m.8 views

CVE-2020-24692

The Ignite portal in Mitel MiContact Center Business before 9.3.0.0 could allow an attacker to execute arbitrary scripts due to insufficient input validation, aka XSS. A successful exploit could allow an attacker to gain access to a user session...

7.1CVSS7.7AI score0.00419EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/14 12:32 a.m.10 views

CVE-2024-35283

A vulnerability in the Ignite component of Mitel MiContact Center Business through 10.0.0.4 could allow an unauthenticated attacker to conduct a stored cross-site scripting XSS attack due to insufficient input validation...

6.1CVSS5.7AI score0.00263EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/02/13 11:46 p.m.11 views

CVE-2024-35284

A vulnerability in the legacy chat component of Mitel MiContact Center Business through 10.0.0.4 could allow an unauthenticated attacker to conduct a reflected cross-site scripting XSS attack due to insufficient input validation...

5.4CVSS5.9AI score0.00252EPSS
Exploits0References3
OSV
OSV
added 2024/10/01 7:15 p.m.6 views

CVE-2024-42514

A vulnerability in the legacy chat component of Mitel MiContact Center Business through 10.1.0.4 could allow an unauthenticated attacker to conduct an unauthorized access attack due to inadequate access control checks. A successful exploit requires user interaction and could allow an attacker to...

8.1CVSS5.7AI score0.00421EPSS
Exploits0References3
NVD
NVD
added 2024/10/01 7:15 p.m.11 views

CVE-2024-42514

A vulnerability in the legacy chat component of Mitel MiContact Center Business through 10.1.0.4 could allow an unauthenticated attacker to conduct an unauthorized access attack due to inadequate access control checks. A successful exploit requires user interaction and could allow an attacker to...

8.1CVSS0.00421EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/10/01 12:0 a.m.6 views

PT-2024-29999 · Mitel · Mitel Micontact Center Business

Name of the Vulnerable Software and Affected Versions: Mitel MiContact Center Business versions through 10.1.0.4 Description: A vulnerability in the legacy chat component could allow an unauthenticated attacker to conduct an unauthorized access attack due to inadequate access control checks. A...

8.1CVSS6.2AI score0.00421EPSS
Exploits0References8
CVE
CVE
added 2024/10/01 12:0 a.m.54 views

CVE-2024-42514

Summary: CVE-2024-42514 affects Mitel MiContact Center Business of the legacy chat component up to version 10.1.0.4. The root cause is inadequate access control checks that allow an unauthenticated attacker, requiring user interaction, to access sensitive information and send unauthorized message...

8.1CVSS9AI score0.00421EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2024/10/01 12:0 a.m.10 views

CVE-2024-42514

A vulnerability in the legacy chat component of Mitel MiContact Center Business through 10.1.0.4 could allow an unauthenticated attacker to conduct an unauthorized access attack due to inadequate access control checks. A successful exploit requires user interaction and could allow an attacker to...

9.1AI score0.00421EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/10/01 12:0 a.m.4 views

Mitel MiContact Center Business 安全漏洞

Mitel MiContact Center Business is an all-media contact center platform from Mitel Canada. The platform is used in customer communication, production management and other scenarios. A security vulnerability exists in Mitel MiContact Center Business version 10.1.0.4 and prior versions, which stems...

8.1CVSS6.4AI score0.00421EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/10/01 12:0 a.m.19 views

CVE-2024-42514

A vulnerability in the legacy chat component of Mitel MiContact Center Business through 10.1.0.4 could allow an unauthenticated attacker to conduct an unauthorized access attack due to inadequate access control checks. A successful exploit requires user interaction and could allow an attacker to...

0.00421EPSS
Exploits0References3
NVD
NVD
added 2024/05/29 4:15 p.m.15 views

CVE-2024-35283

A vulnerability in the Ignite component of Mitel MiContact Center Business through 10.0.0.4 could allow an unauthenticated attacker to conduct a stored cross-site scripting XSS attack due to insufficient input validation...

6.1CVSS5.5AI score0.00263EPSS
Exploits0References1
NVD
NVD
added 2024/05/29 4:15 p.m.24 views

CVE-2024-35284

A vulnerability in the legacy chat component of Mitel MiContact Center Business through 10.0.0.4 could allow an unauthenticated attacker to conduct a reflected cross-site scripting XSS attack due to insufficient input validation...

5.4CVSS5.7AI score0.00252EPSS
Exploits0References1
OSV
OSV
added 2024/05/29 4:15 p.m.5 views

CVE-2024-35284

A vulnerability in the legacy chat component of Mitel MiContact Center Business through 10.0.0.4 could allow an unauthenticated attacker to conduct a reflected cross-site scripting XSS attack due to insufficient input validation...

5.4CVSS5.7AI score0.00252EPSS
Exploits0References1
OSV
OSV
added 2024/05/29 4:15 p.m.5 views

CVE-2024-35283

A vulnerability in the Ignite component of Mitel MiContact Center Business through 10.0.0.4 could allow an unauthenticated attacker to conduct a stored cross-site scripting XSS attack due to insufficient input validation...

6.1CVSS5.7AI score0.00263EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/29 3:52 p.m.16 views

CVE-2024-35284

A vulnerability in the legacy chat component of Mitel MiContact Center Business through 10.0.0.4 could allow an unauthenticated attacker to conduct a reflected cross-site scripting XSS attack due to insufficient input validation...

6.1AI score0.00252EPSS
Exploits0References1
CVE
CVE
added 2024/05/29 3:52 p.m.120 views

CVE-2024-35284

CVE-2024-35284 affects Mitel MiContact Center Business through version 10.0.0.4, specifically in the legacy chat component where insufficient input validation enables a reflected XSS when exploited by an unauthenticated attacker. The issue is confirmed by PT-2024-26416, which ties the vulnerabili...

5.4CVSS5.8AI score0.00252EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/05/29 3:52 p.m.29 views

CVE-2024-35284

A vulnerability in the legacy chat component of Mitel MiContact Center Business through 10.0.0.4 could allow an unauthenticated attacker to conduct a reflected cross-site scripting XSS attack due to insufficient input validation...

5.7AI score0.00252EPSS
Exploits0References1
CVE
CVE
added 2024/05/29 3:42 p.m.97 views

CVE-2024-35283

CVE-2024-35283 affects the Mitel MiContact Center Business Ignite component. Affected software: MiContact Center Business versions through 10.0.0.4. Description in connected docs shows a vulnerability due to insufficient input validation that could allow an unauthenticated attacker to perform a s...

6.1CVSS5.7AI score0.00263EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/05/29 3:42 p.m.21 views

CVE-2024-35283

A vulnerability in the Ignite component of Mitel MiContact Center Business through 10.0.0.4 could allow an unauthenticated attacker to conduct a stored cross-site scripting XSS attack due to insufficient input validation...

5.5AI score0.00263EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/29 3:42 p.m.14 views

CVE-2024-35283

A vulnerability in the Ignite component of Mitel MiContact Center Business through 10.0.0.4 could allow an unauthenticated attacker to conduct a stored cross-site scripting XSS attack due to insufficient input validation...

5.8AI score0.00263EPSS
Exploits0References1
Rows per page
Query Builder