30 matches found
Mitel MiCollab - Authentication Bypass
A vulnerability in the NuPoint Unified Messaging NPM component of Mitel MiCollab through 9.8 SP1 FP2 9.8.1.201 could allow an unauthenticated attacker to conduct a path traversal attack, due to insufficient input validation. A successful exploit could allow unauthorized access, enabling the...
EUVD-2014-7837
Malware in sbrugna...
EUVD-2025-24008
Malicious code in bioql PyPI...
CVE-2025-52913
A vulnerability in the NuPoint Unified Messaging NPM component of Mitel MiCollab through 9.8 SP2 9.8.2.12 could allow an unauthenticated attacker to conduct a path traversal attack due to insufficient input validation. A successful exploit could allow unauthorized access, enabling the attacker to...
CVE-2025-52913
A vulnerability in the NuPoint Unified Messaging NPM component of Mitel MiCollab through 9.8 SP2 9.8.2.12 could allow an unauthenticated attacker to conduct a path traversal attack due to insufficient input validation. A successful exploit could allow unauthorized access, enabling the attacker to...
Mitel MiCollab 安全漏洞
Mitel MiCollab is a mobile application that provides voice, video, messaging, audio conferencing, and team collaboration for employees from Mitel Canada. A security vulnerability exists in Mitel MiCollab version 9.8.2.12 and earlier, which stems from insufficient input validation of the NuPoint...
CVE-2025-52913
A vulnerability in the NuPoint Unified Messaging NPM component of Mitel MiCollab through 9.8 SP2 9.8.2.12 could allow an unauthenticated attacker to conduct a path traversal attack due to insufficient input validation. A successful exploit could allow unauthorized access, enabling the attacker to...
CVE-2024-41713
A vulnerability in the NuPoint Unified Messaging NPM component of Mitel MiCollab through 9.8 SP1 FP2 9.8.1.201 could allow an unauthenticated attacker to conduct a path traversal attack, due to insufficient input validation. A successful exploit could allow unauthorized access, enabling the...
The vulnerability of the NuPoint Unified Messaging component of the Mitel MiCollab collaboration platform allows attackers to execute SQL code through this attack.
The vulnerability of the NuPoint Unified Messaging component of the Mitel MiCollab collaboration platform relates to the lack of security measures for handling SQL queries. Exploiting this vulnerability allows an attacker to carry out an attack by injecting SQL code by sending a specially crafted...
The vulnerability of the NuPoint Unified Messaging component of the Mitel MiCollab collaboration platform allows a hacker to execute arbitrary commands.
The vulnerability of the NuPoint Unified Messaging component of the Mitel MiCollab collaboration platform is related to the lack of data cleaning measures at the management level. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands using specially created data...
Vulnerabilities fixed in Mitel MiCollab
Mitel has fixed vulnerabilities in Mitel MiCollab Specifically the Unified Messaging and Conferencing components. The vulnerabilities are in the way Mitel MiCollab components handle user input. An attacker can exploit these vulnerabilities to gain unauthorized access to user data and system...
The vulnerability of the NuPoint Unified Messaging component of the Mitel MiCollab collaboration platform allows a hacker to elevate their privileges.
The vulnerability of the NuPoint Unified Messaging component of the Mitel MiCollab collaboration platform is related to deficiencies in access control. Exploiting this vulnerability could allow attackers to increase their privileges...
The vulnerability of the NuPoint Unified Messaging component of the Mitel MiCollab collaboration platform, related to insufficient validation of input data, allows a perpetrator to execute arbitrary commands.
The vulnerability of the NuPoint Unified Messaging component of the Mitel MiCollab collaboration platform relates to the failure to implement measures to neutralize specific elements. Exploiting this vulnerability allows attackers to execute arbitrary commands...
The vulnerability of the NuPoint Unified Messaging component of the Mitel MiCollab collaboration platform allows a intruder to gain unauthorized access to protected information.
The vulnerability of the NuPoint Unified Messaging component of the Mitel MiCollab collaboration platform is related to an incorrect restriction on the path to the restricted access catalog. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected...
CVE-2024-41713
A vulnerability in the NuPoint Unified Messaging NPM component of Mitel MiCollab through 9.8 SP1 FP2 9.8.1.201 could allow an unauthenticated attacker to conduct a path traversal attack, due to insufficient input validation. A successful exploit could allow unauthorized access, enabling the...
CVE-2024-41713
Mitel MiCollab’s NuPoint Unified Messaging (NPM) component is affected by CVE-2024-41713, a path-traversal vulnerability that affects MiCollab up to 9.8 SP1 FP2 (9.8.1.201). An unauthenticated attacker can read or modify data and configurations due to insufficient input validation. Connected docu...
PT-2024-7463
Name of the Vulnerable Software and Affected Versions: Mitel MiCollab versions 9.8 SP1 FP2 9.8.1.201 and earlier Description: A vulnerability in the NuPoint Unified Messaging NPM component of Mitel MiCollab could allow an unauthenticated attacker to conduct a path traversal attack due to...
CVE-2021-26857
Microsoft Exchange Server Remote Code Execution Vulnerability Recent assessments: wvu-r7 at March 03, 2021 6:59pm UTC reported: As per Microsoft’s blog post on Exchange Server 0day use by the HAFNIUM actors, CVE-2021-26857 is a deserialization vulnerability in Exchange Server’s Unified Messaging...
The vulnerability of the Unified Messaging service on Microsoft Exchange Server allows a perpetrator to execute arbitrary code.
The vulnerability of the Unified Messaging service on Microsoft Exchange Server is related to deficiencies in the data deserialization mechanism. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
PT-2021-2213
Name of the Vulnerable Software and Affected Versions Microsoft Exchange Server affected versions not specified Description A flaw exists in Microsoft Exchange Server’s Unified Messaging service related to data deserialization. Successful exploitation could allow a remote attacker to execute...