Voice Security Vulnerabilities and Issues — Voice CVE List

Lucene search

MutareVoice

4 matches found

CVE•added 2021/02/16 4:15 a.m.•58 views

CVE-2021-27233

An issue was discovered in Mutare Voice (EVM) 3.x before 3.3.8. On the admin portal of the web application, password information for external systems is visible in cleartext. The Settings.asp page is affected by this issue.

4.9CVSS5.2AI score0.00125EPSS

CVE•added 2021/02/16 4:15 a.m.•53 views

CVE-2021-27235

An issue was discovered in Mutare Voice (EVM) 3.x before 3.3.8. On the admin portal of the web application, there is a functionality at diagzip.asp that allows anyone to export tables of a database.

4.9CVSS5.1AI score0.00267EPSS

CVE•added 2021/02/16 4:15 a.m.•49 views

CVE-2021-27236

An issue was discovered in Mutare Voice (EVM) 3.x before 3.3.8. getfile.asp allows Unauthenticated Local File Inclusion, which can be leveraged to achieve Remote Code Execution.

9.8CVSS9.4AI score0.01896EPSS

CVE•added 2021/02/16 4:15 a.m.•40 views

CVE-2021-27234

An issue was discovered in Mutare Voice (EVM) 3.x before 3.3.8. The web application suffers from SQL injection on Adminlog.asp, Archivemsgs.asp, Deletelog.asp, Eventlog.asp, and Evmlog.asp.

9.8CVSS9.8AI score0.00366EPSS