26 matches found
CVE-2025-23093
The Platform component of Mitel OpenScape 4000 and OpenScape 4000 Manager through V10 R1.54.1 and V11 through R0.22.1 could allow an authenticated attacker to conduct a privilege escalation attack due to the execution of a resource with unnecessary privileges. A successful exploit could allow an...
EUVD-2025-3120
Malicious code in bioql PyPI...
EUVD-2025-28139
Malicious code in bioql PyPI...
CVE-2025-23092
Mitel OpenScape Accounting Management through V5 R1.1.0 could allow an authenticated attacker with administrative privileges to conduct a path traversal attack due to insufficient sanitization of user input. A successful exploit could allow an attacker to upload arbitrary files and execute...
CVE-2025-48026
A vulnerability in the WebApl component of Mitel OpenScape Xpressions through V7R1 FR5 HF43 P913 could allow an unauthenticated attacker to conduct a path traversal attack due to insufficient input validation. A successful exploit could allow an attacker to read files from the underlying OS and...
CVE-2025-23092
Mitel OpenScape Accounting Management through V5 R1.1.0 could allow an authenticated attacker with administrative privileges to conduct a path traversal attack due to insufficient sanitization of user input. A successful exploit could allow an attacker to upload arbitrary files and execute...
CVE-2025-48026
A vulnerability in the WebApl component of Mitel OpenScape Xpressions through V7R1 FR5 HF43 P913 could allow an unauthenticated attacker to conduct a path traversal attack due to insufficient input validation. A successful exploit could allow an attacker to read files from the underlying OS and...
CVE-2025-23092
Mitel OpenScape Accounting Management through V5 R1.1.0 could allow an authenticated attacker with administrative privileges to conduct a path traversal attack due to insufficient sanitization of user input. A successful exploit could allow an attacker to upload arbitrary files and execute...
CVE-2025-48026
The CVE-2025-48026 entry applies to Mitel OpenScape Xpressions WebApl component (through V7R1 FR5 HF43 P913). It describes an unauthenticated path traversal due to insufficient input validation, allowing reading of arbitrary files on the underlying OS and exposure of sensitive information. Affect...
PT-2025-26636 · Mitel · Mitel Openscape Xpressions
Name of the Vulnerable Software and Affected Versions: Mitel OpenScape Xpressions versions through V7R1 FR5 HF43 P913 Description: A vulnerability in the WebApl component could allow an unauthenticated attacker to conduct a path traversal attack due to insufficient input validation. A successful...
CVE-2025-48026
A vulnerability in the WebApl component of Mitel OpenScape Xpressions through V7R1 FR5 HF43 P913 could allow an unauthenticated attacker to conduct a path traversal attack due to insufficient input validation. A successful exploit could allow an attacker to read files from the underlying OS and...
CVE-2025-23092
Mitel OpenScape Accounting Management through V5 R1.1.0 is affected by a path traversal vulnerability caused by insufficient input sanitization. An authenticated attacker with administrative privileges could exploit this to upload arbitrary files and execute unauthorized commands. The issue is do...
Mitel OpenScape Accounting Management 安全漏洞
Mitel OpenScape Accounting Management is an application for managing and tracking communication costs from Mitel Canada. A security vulnerability exists in Mitel OpenScape Accounting Management V5 R1.1.0 and earlier versions, which stems from insufficient user input cleanup leading to a path...
PT-2025-13391 · Mitel · Mitel Micontact Center Business
Name of the Vulnerable Software and Affected Versions: Mitel OpenScape Accounting Management through V5 R1.1.0 Description: The issue is related to a path traversal attack due to insufficient sanitization of user input, which could allow an authenticated attacker with administrative privileges to...
CVE-2025-23094
The Platform component of Mitel OpenScape 4000 and OpenScape 4000 Manager V11 R0.22.0 through V11 R0.22.1, V10 R1.54.0 through V10 R1.54.1, and V10 R1.42.6 and earlier could allow an unauthenticated attacker to conduct a command injection attack due to insufficient parameter sanitization. A...
CVE-2025-23094
The Platform component of Mitel OpenScape 4000 and OpenScape 4000 Manager V11 R0.22.0 through V11 R0.22.1, V10 R1.54.0 through V10 R1.54.1, and V10 R1.42.6 and earlier could allow an unauthenticated attacker to conduct a command injection attack due to insufficient parameter sanitization. A...
CVE-2025-23093
The Platform component of Mitel OpenScape 4000 and OpenScape 4000 Manager through V10 R1.54.1 and V11 through R0.22.1 could allow an authenticated attacker to conduct a privilege escalation attack due to the execution of a resource with unnecessary privileges. A successful exploit could allow an...
CVE-2025-23094
The CVE-2025-23094 issue affects Mitel OpenScape 4000 and OpenScape 4000 Manager Platform component. It enables an unauthenticated attacker to perform a command injection due to insufficient parameter sanitization, allowing execution of arbitrary commands at the same privilege level as the web ac...
CVE-2025-23094
The Platform component of Mitel OpenScape 4000 and OpenScape 4000 Manager V11 R0.22.0 through V11 R0.22.1, V10 R1.54.0 through V10 R1.54.1, and V10 R1.42.6 and earlier could allow an unauthenticated attacker to conduct a command injection attack due to insufficient parameter sanitization. A...
Mitel OpenScape 4000和OpenScape 4000 Manager 安全漏洞
Mitel OpenScape 4000 and Mitel OpenScape 4000 Manager are both products of Mitel Corporation of Canada.Mitel OpenScape 4000 is a hybrid IP communications platform.Mitel OpenScape 4000 Manager is a management platform. A security vulnerability exists in Mitel OpenScape 4000 and Mitel OpenScape 400...