Skip to main content

Misecuremessages

2 CVEs product

Monthly

CVE-2014-2347 HIGH POC This Week

Amtelco miSecureMessages (aka MSM) 6.2 does not properly manage sessions, which allows remote authenticated users to obtain sensitive information via a modified message request. Rated high severity (CVSS 7.0), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Information Disclosure Misecuremessages
NVD Exploit-DB
CVSS 2.0
7.0
EPSS
7.9%
CVE-2014-0357 MEDIUM This Month

Amtelco miSecureMessages allows remote attackers to read the messages of arbitrary users via an XML request containing a valid license key and a modified contactID value, as demonstrated by a request. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Apple Google Authentication Bypass Misecuremessages
NVD VulDB
CVSS 2.0
5.0
EPSS
1.6%
EPSS 8% CVSS 7.0
HIGH POC This Week

Amtelco miSecureMessages (aka MSM) 6.2 does not properly manage sessions, which allows remote authenticated users to obtain sensitive information via a modified message request. Rated high severity (CVSS 7.0), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Information Disclosure Misecuremessages
NVD Exploit-DB
EPSS 2% CVSS 5.0
MEDIUM This Month

Amtelco miSecureMessages allows remote attackers to read the messages of arbitrary users via an XML request containing a valid license key and a modified contactID value, as demonstrated by a request. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Apple Google Authentication Bypass +1
NVD VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy