IDCVSSSummaryLast (major) updatePublished
CVE-2018-5782 10.0
A vulnerability in the conferencing component of Mitel Connect ONSITE, versions R1711-PREM and earlier, and Mitel ST 14.2, release GA28 and earlier, could allow an unauthenticated attacker to inject PHP code using specially crafted requests to the vs
14-03-2018 - 12:29 14-03-2018 - 12:29
CVE-2018-5781 10.0
A vulnerability in the conferencing component of Mitel Connect ONSITE, versions R1711-PREM and earlier, and Mitel ST 14.2, release GA28 and earlier, could allow an unauthenticated attacker to inject PHP code using specially crafted requests to the ve
14-03-2018 - 12:29 14-03-2018 - 12:29
CVE-2018-5780 10.0
A vulnerability in the conferencing component of Mitel Connect ONSITE, versions R1711-PREM and earlier, and Mitel ST 14.2, release GA28 and earlier, could allow an unauthenticated attacker to inject PHP code using specially crafted requests to the vn
14-03-2018 - 12:29 14-03-2018 - 12:29
CVE-2018-5779 10.0
A vulnerability in the conferencing component of Mitel Connect ONSITE, versions R1711-PREM and earlier, and Mitel ST 14.2, release GA28 and earlier, could allow an unauthenticated attacker to copy a malicious script into a newly generated PHP file an
14-03-2018 - 12:29 14-03-2018 - 12:29
CVE-2017-16251 9.0
A vulnerability in the conferencing component of Mitel ST 14.2, release GA28 and earlier, could allow an authenticated user to upload a malicious script to the Personal Library by a crafted POST request. Successful exploit could allow an attacker to
13-03-2018 - 15:29 13-03-2018 - 15:29
CVE-2017-16250 5.0
A vulnerability in Mitel ST 14.2, release GA28 and earlier, could allow an attacker to use the API function to enumerate through user-ids which could be used to identify valid user ids and associated user names.
13-03-2018 - 15:29 13-03-2018 - 15:29
Back to Top Mark selected
Back to Top