Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Micloud_management_portal
(Mitel)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 5 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2020-09-25 | CVE-2020-24592 | Mitel MiCloud Management Portal before 6.1 SP5 could allow an attacker, by sending a crafted request, to view system information due to insufficient output sanitization. | Micloud_management_portal | 5.3 | ||
| 2020-09-25 | CVE-2020-24593 | Mitel MiCloud Management Portal before 6.1 SP5 could allow a remote attacker to conduct a SQL Injection attack and access user credentials due to improper input validation. | Micloud_management_portal | 7.2 | ||
| 2020-09-25 | CVE-2020-24594 | Mitel MiCloud Management Portal before 6.1 SP5 could allow an unauthenticated attacker to execute arbitrary scripts due to insufficient input validation, aka XSS. A successful exploit could allow an attacker to gain access to a user session. | Micloud_management_portal | 9.6 | ||
| 2020-09-25 | CVE-2020-24595 | Mitel MiCloud Management Portal before 6.1 SP5 could allow an attacker, by sending a crafted request, to retrieve sensitive information due to insufficient access control. | Micloud_management_portal | 5.3 |