Lucene search
+L

113 matches found

CNNVD
CNNVD
added 2024/05/29 12:0 a.m.5 views

Mitel MiContact Center Business 跨站脚本漏洞

Mitel MiContact Center Business is an all-media contact center platform from Canadian company Mitel. The platform is used in customer communication, production management and other scenarios. A cross-site scripting vulnerability exists in Mitel MiContact Center Business version 10.0.0.4, which is...

6.1CVSS6.1AI score0.00263EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/05/29 12:0 a.m.31 views

Mitel MiContact Center Business 跨站脚本漏洞

Mitel MiContact Center Business is an all-media contact center platform from Canadian company Mitel. The platform is used in customer communication, production management and other scenarios. A cross-site scripting vulnerability exists in Mitel MiContact Center Business version 10.0.0.4, which is...

5.4CVSS6.3AI score0.00252EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/05/29 12:0 a.m.5 views

PT-2024-26415 · Mitel · Mitel Micontact Center Business

Name of the Vulnerable Software and Affected Versions: Mitel MiContact Center Business versions through 10.0.0.4 Description: The issue is related to a stored cross-site scripting XSS attack due to insufficient input validation in the Ignite component. This could allow an unauthenticated attacker...

6.1CVSS5.8AI score0.00263EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/05/29 12:0 a.m.4 views

PT-2024-26416 · Mitel · Mitel Micontact Center Business

Name of the Vulnerable Software and Affected Versions: Mitel MiContact Center Business versions through 10.0.0.4 Description: The issue is related to a reflected cross-site scripting XSS attack in the legacy chat component due to insufficient input validation, allowing an unauthenticated attacker...

5.4CVSS6.1AI score0.00252EPSS
Exploits0References4
OSV
OSV
added 2024/03/16 6:15 a.m.5 views

CVE-2024-28070

A vulnerability in the legacy chat component of Mitel MiContact Center Business through 10.0.0.4 could allow an unauthenticated attacker to conduct a reflected cross-site scripting XSS attack due to insufficient input validation. A successful exploit could allow an attacker to access sensitive...

6.8CVSS5.7AI score0.00447EPSS
Exploits0References1
NVD
NVD
added 2024/03/16 6:15 a.m.10 views

CVE-2024-28070

A vulnerability in the legacy chat component of Mitel MiContact Center Business through 10.0.0.4 could allow an unauthenticated attacker to conduct a reflected cross-site scripting XSS attack due to insufficient input validation. A successful exploit could allow an attacker to access sensitive...

6.8CVSS5.8AI score0.00447EPSS
Exploits0References1
OSV
OSV
added 2024/03/16 6:15 a.m.5 views

CVE-2024-28069

A vulnerability in the legacy chat component of Mitel MiContact Center Business through 10.0.0.4 could allow an unauthenticated attacker to conduct an information disclosure attack due to improper configuration. A successful exploit could allow an attacker to access sensitive information and...

7.5CVSS5.8AI score0.00573EPSS
Exploits0References1
NVD
NVD
added 2024/03/16 6:15 a.m.17 views

CVE-2024-28069

A vulnerability in the legacy chat component of Mitel MiContact Center Business through 10.0.0.4 could allow an unauthenticated attacker to conduct an information disclosure attack due to improper configuration. A successful exploit could allow an attacker to access sensitive information and...

7.5CVSS6.2AI score0.00573EPSS
Exploits0References1
CVE
CVE
added 2024/03/16 12:0 a.m.62 views

CVE-2024-28069

CVE-2024-28069 concerns Mitel MiContact Center Business (legacy chat component) up to version 10.0.0.4. The vulnerability allows an unauthenticated attacker to perform information disclosure due to improper configuration, enabling access to sensitive data and potentially unauthorized actions with...

7.5CVSS6.4AI score0.00573EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/03/16 12:0 a.m.14 views

CVE-2024-28070

A vulnerability in the legacy chat component of Mitel MiContact Center Business through 10.0.0.4 could allow an unauthenticated attacker to conduct a reflected cross-site scripting XSS attack due to insufficient input validation. A successful exploit could allow an attacker to access sensitive...

6AI score0.00447EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/16 12:0 a.m.31 views

CVE-2024-28070

A vulnerability in the legacy chat component of Mitel MiContact Center Business through 10.0.0.4 could allow an unauthenticated attacker to conduct a reflected cross-site scripting XSS attack due to insufficient input validation. A successful exploit could allow an attacker to access sensitive...

6AI score0.00447EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/03/16 12:0 a.m.17 views

CVE-2024-28069

A vulnerability in the legacy chat component of Mitel MiContact Center Business through 10.0.0.4 could allow an unauthenticated attacker to conduct an information disclosure attack due to improper configuration. A successful exploit could allow an attacker to access sensitive information and...

6.2AI score0.00573EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/03/16 12:0 a.m.4 views

Mitel MiContact Center Business Security Breach

Mitel MiContact Center Business is an all-media contact center platform from Mitel. The platform is used in customer communication, production management and other scenarios. A security vulnerability exists in Mitel MiContact Center Business version 10.0.0.4 and prior versions, which originated...

7.5CVSS6.2AI score0.00573EPSS
Exploits0References2
CVE
CVE
added 2024/03/16 12:0 a.m.78 views

CVE-2024-28070

Mitel MiContact Center Business

6.8CVSS5.8AI score0.00447EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/03/16 12:0 a.m.29 views

CVE-2024-28069

A vulnerability in the legacy chat component of Mitel MiContact Center Business through 10.0.0.4 could allow an unauthenticated attacker to conduct an information disclosure attack due to improper configuration. A successful exploit could allow an attacker to access sensitive information and...

6.4AI score0.00573EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/03/16 12:0 a.m.3 views

Mitel MiContact Center Business Security Breach

Mitel MiContact Center Business is an all-media contact center platform from Mitel. The platform is used in customer communication, production management and other scenarios. A security vulnerability exists in Mitel MiContact Center Business version 10.0.0.4 and prior versions, which stems from...

6.8CVSS6.1AI score0.00447EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/03/15 12:0 a.m.9 views

PT-2024-22250 · Mitel · Mitel Micontact Center Business

Name of the Vulnerable Software and Affected Versions: Mitel MiContact Center Business versions through 10.0.0.4 Description: A vulnerability in the legacy chat component could allow an unauthenticated attacker to conduct an information disclosure attack due to improper configuration. A successfu...

7.5CVSS6.2AI score0.00573EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/03/15 12:0 a.m.8 views

PT-2024-22251 · Mitel · Mitel Micontact Center Business

Name of the Vulnerable Software and Affected Versions: Mitel MiContact Center Business versions through 10.0.0.4 Description: A vulnerability in the legacy chat component could allow an unauthenticated attacker to conduct a reflected cross-site scripting XSS attack due to insufficient input...

6.8CVSS5.6AI score0.00447EPSS
Exploits0References7
NVD
NVD
added 2023/02/13 6:15 p.m.23 views

CVE-2023-22854

The ccmweb component of Mitel MiContact Center Business server 9.2.2.0 through 9.4.1.0 could allow an unauthenticated attacker to download arbitrary files, due to insufficient restriction of URL parameters. A successful exploit could allow access to sensitive information...

9.1CVSS7.6AI score0.006EPSS
Exploits0References2
OSV
OSV
added 2023/02/13 6:15 p.m.5 views

CVE-2023-22854

The ccmweb component of Mitel MiContact Center Business server 9.2.2.0 through 9.4.1.0 could allow an unauthenticated attacker to download arbitrary files, due to insufficient restriction of URL parameters. A successful exploit could allow access to sensitive information...

7.5CVSS7.2AI score0.006EPSS
Exploits0References2
Rows per page
Query Builder