cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-31784,https://securityvulnerability.io/vulnerability/CVE-2022-31784,Buffer Overflow Vulnerability in MiVoice Business by Mitel,"The vulnerability in the management interface of MiVoice Business and MiVoice Business Express allows unauthenticated attackers with network access to perform a buffer overflow attack due to inadequate validation of URL parameters. This could lead to arbitrary code execution, presenting significant security risks. Users of the affected products should assess their network configurations and take necessary measures to mitigate potential exploitation.",Mitel,"Mivoice Business,Mivoice Business Express",9.8,CRITICAL,0.003539999946951866,false,,false,false,false,,,false,false,,2022-06-17T11:43:09.000Z,0
CVE-2022-26143,https://securityvulnerability.io/vulnerability/CVE-2022-26143,Remote Information Disclosure and Denial of Service in Mitel MiCollab and MiVoice Business Express,"The vulnerability in the TP-240 component of Mitel's MiCollab and MiVoice Business Express products allows remote attackers to exploit weaknesses leading to sensitive information exposure and denial of service. Attackers can leverage this vulnerability to initiate traffic amplification attacks, contributing to performance degradation and excessive outbound traffic. Notably exploited in early 2022, this vulnerability poses significant risks to network stability and data confidentiality.",Mitel,"Micollab,Mivoice Business Express",9.8,CRITICAL,0.3090299963951111,true,2022-03-25T00:00:00.000Z,false,false,true,2022-03-25T00:00:00.000Z,,false,false,,2022-03-10T17:47:00.000Z,0
CVE-2018-18819,https://securityvulnerability.io/vulnerability/CVE-2018-18819,,"A vulnerability in the web conference chat component of MiCollab, versions 7.3 PR6 (7.3.0.601) and earlier, and 8.0 (8.0.0.40) through 8.0 SP2 FP2 (8.0.2.202), and MiVoice Business Express versions 7.3 PR3 (7.3.1.302) and earlier, and 8.0 (8.0.0.40) through 8.0 SP2 FP1 (8.0.2.202), could allow creation of unauthorized chat sessions, due to insufficient access controls. A successful exploit could allow execution of arbitrary commands.",Mitel,"Mivoice Business Express,Micollab",5.3,MEDIUM,0.001069999998435378,false,,false,false,false,,,false,false,,2019-11-12T13:51:36.000Z,0