Malion Security Vulnerabilities and Issues — Malion CVE List

Lucene search

IntercomMalion

5 matches found

CVE•added 2017/08/04 4:29 p.m.•46 views

CVE-2017-10815

MaLion for Windows 5.2.1 and earlier (only when "Remote Control" is installed) and MaLion for Mac 4.0.1 to 5.2.1 (only when "Remote Control" is installed) allow remote attackers to bypass authentication to execute arbitrary commands or operations on Terminal Agent.

8.1CVSS8.7AI score0.0114EPSS

CVE•added 2017/08/04 4:29 p.m.•44 views

CVE-2017-10816

SQL injection vulnerability in the MaLion for Windows and Mac 5.0.0 to 5.2.1 allows remote attackers to execute arbitrary SQL commands via Relay Service Server.

9.8CVSS9.9AI score0.0067EPSS

CVE•added 2017/08/04 4:29 p.m.•39 views

CVE-2017-10818

MaLion for Windows and Mac versions 3.2.1 to 5.2.1 uses a hardcoded cryptographic key which may allow an attacker to alter the connection settings of Terminal Agent and spoof the Relay Service.

9.8CVSS9.1AI score0.00443EPSS

CVE•added 2017/08/04 4:29 p.m.•37 views

CVE-2017-10819

MaLion for Mac 4.3.0 to 5.2.1 does not properly validate certificates, which may allow an attacker to eavesdrop on an encrypted communication.

5.9CVSS5.7AI score0.00134EPSS

CVE•added 2017/08/04 4:29 p.m.•36 views

CVE-2017-10817

MaLion for Windows and Mac 5.0.0 to 5.2.1 allows remote attackers to bypass authentication to alter settings in Relay Service Server.

9.8CVSS9.5AI score0.01029EPSS