Micloud Management Portal@6.1 Security Vulnerabilities and Issues — Micloud Management Portal@6.1 CVE List

Lucene search

MitelMicloud Management Portal6.1

4 matches found

CVE•added 2020/09/25 4:23 a.m.•53 views

CVE-2020-24594

Mitel MiCloud Management Portal before 6.1 SP5 could allow an unauthenticated attacker to execute arbitrary scripts due to insufficient input validation, aka XSS. A successful exploit could allow an attacker to gain access to a user session.

9.6CVSS9.5AI score0.00651EPSS

CVE•added 2020/09/25 4:23 a.m.•51 views

CVE-2020-24595

Mitel MiCloud Management Portal before 6.1 SP5 could allow an attacker, by sending a crafted request, to retrieve sensitive information due to insufficient access control.

5.3CVSS5AI score0.00206EPSS

CVE•added 2020/09/25 4:23 a.m.•50 views

CVE-2020-24593

Mitel MiCloud Management Portal before 6.1 SP5 could allow a remote attacker to conduct a SQL Injection attack and access user credentials due to improper input validation.

7.2CVSS7.3AI score0.00433EPSS

CVE•added 2020/09/25 4:23 a.m.•45 views

CVE-2020-24592

Mitel MiCloud Management Portal before 6.1 SP5 could allow an attacker, by sending a crafted request, to view system information due to insufficient output sanitization.

5.3CVSS5AI score0.00206EPSS