CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

32 matches found

RedhatCVE•added 2026/01/09 10:18 a.m.•6 views

CVE-2019-18863

A key length vulnerability in the implementation of the SRTP 128-bit key on Mitel 6800 and 6900 SIP series phones, versions 5.1.0.2051 SP2 and earlier, could allow an attacker to launch a man-in-the-middle attack when SRTP is used in a call. A successful exploit may allow the attacker to intercep...

5.9CVSS6.6AI score0.00513EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:34 a.m.•5 views

CVE-2024-41711

A vulnerability in the Mitel 6800 Series, 6900 Series, and 6900w Series SIP Phones, including the 6970 Conference Unit, through R6.4.0.HF1 R6.4.0.136 could allow an unauthenticated attacker with physical access to the phone to conduct an argument injection attack, due to insufficient parameter...

6.8CVSS8AI score0.00549EPSS

Exploits0References1

EUVD•added 2025/08/07 12:0 a.m.•6 views

EUVD-2025-23917

A vulnerability in the Mitel 6800 Series, 6900 Series, and 6900w Series SIP Phones, including the 6970 Conference Unit through 6.4 SP4, could allow an unauthenticated attacker to conduct a command injection attack due to insufficient parameter sanitization. A successful exploit could allow an...

6.5CVSS9.9AI score0.48492EPSS

Exploits0References2

CVE•added 2025/08/07 12:0 a.m.•93 views

CVE-2025-47188

CVE-2025-47188 describes a command-injection vulnerability in Mitel SIP Phones (6800, 6900, 6900w series) up to 6.4 SP4 (R6.4.0.4006) and the 6970 Conference Unit up to 6.4 SP4 or V1 R0.1.0.** The root cause is insufficient input sanitization, allowing an unauthenticated attacker to execute arbit...

6.5CVSS9.1AI score0.48492EPSS

In wildExploits0References2

Cvelist•added 2025/07/23 12:0 a.m.•7 views

CVE-2025-47187

A vulnerability in the Mitel 6800 Series, 6900 Series, and 6900w Series SIP Phones through 6.4 SP4 R6.4.0.4006, and the 6970 Conference Unit through 6.4 SP4 R6.4.0.4006 or version V1 R0.1.0, could allow an unauthenticated attacker to perform a file upload attack due to missing authentication...

0.00818EPSS

Exploits0References2

CNNVD•added 2025/07/23 12:0 a.m.•1 views

Mitel 6800 Series、Mitel 6900 Series和Mitel 6900w Series 安全漏洞

Mitel 6800 Series and others are a series of telephones from the Canadian company Mindy Mitel. A security vulnerability exists in the Mitel 6800 Series, Mitel 6900 Series, and Mitel 6900w Series that stems from a lack of an authentication mechanism that could lead to a file upload attack...

7.5CVSS6.9AI score0.00818EPSS

Exploits0References3

Vulnrichment•added 2025/07/23 12:0 a.m.•3 views

CVE-2025-47187

6.9AI score0.00818EPSS

Exploits0References2

Positive Technologies•added 2025/05/12 12:0 a.m.•4 views

PT-2025-20723 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: Mitel 6800 Series SIP Phones versions through 6.4 SP4 Mitel 6900 Series SIP Phones versions through 6.4 SP4 Mitel 6900w Series SIP Phones versions through 6.4 SP4 Mitel 6970 Conference Unit versions through 6.4 SP4 Description: A vulnerabilit...

7.5CVSS6.8AI score0.00818EPSS

Exploits0References12

VulnCheck KEV•added 2025/01/28 12:0 a.m.•1 views

VulnCheck KEV: CVE-2024-41710

Mitel 6800 Series, 6900 Series, and 6900w Series SIP Phones, including the 6970 Conference Unit, contain an argument injection vulnerability due to insufficient parameter sanitization during the boot process. Successful exploitation may allow an attacker to execute arbitrary commands within the...

7.2CVSS7.5AI score0.41201EPSS

Exploits3References1

CNNVD•added 2024/08/13 12:0 a.m.•4 views

Mitel 6800 Series、6900 Series和6900w Series 安全漏洞

Mitel 6800 Series and others are a series of phones from Mitel Canada. A security vulnerability exists in the Mitel 6800 Series, 6900 Series, and 6900w Series that stems from an insufficient parameter cleanup vulnerability that allows an attacker to conduct a parameter injection attack, which cou...

6.8CVSS7.7AI score0.00549EPSS

Exploits0References3

OSV•added 2024/08/12 7:15 p.m.•3 views

CVE-2024-41710

A vulnerability in the Mitel 6800 Series, 6900 Series, and 6900w Series SIP Phones, including the 6970 Conference Unit, through R6.4.0.HF1 R6.4.0.136 could allow an authenticated attacker with administrative privilege to conduct an argument injection attack, due to insufficient parameter...

7.2CVSS6AI score0.41201EPSS

Exploits3References4

CNNVD•added 2024/08/12 12:0 a.m.•4 views

Mitel多款产品安全漏洞

Mitel 6800 Series and others are a series of phones from Mitel Canada. A security vulnerability exists in various Mitel products that stems from insufficient parameter cleanup during the SIP Phones startup process, which allows an authenticated attacker with administrative privileges to conduct a...

7.2CVSS9.1AI score0.41201EPSS

Exploits3References4

Positive Technologies•added 2024/05/02 12:0 a.m.•3 views

PT-2024-3206 · Mitel · Mitel 6900 Series +2

Name of the Vulnerable Software and Affected Versions: Mitel 6800 Series and 6900 Series SIP Phones versions through 6.3 SP3 HF4 Mitel 6900w Series SIP Phone versions through 6.3.3 Mitel 6970 Conference Unit versions through 5.1.1 SP8 Description: A buffer overflow attack can be conducted by an...

9CVSS8.4AI score0.0025EPSS

Exploits0References7

CNNVD•added 2024/05/02 12:0 a.m.•5 views