Vulnerabilities > Mitel > Micollab > 8.1.52

DATE CVE VULNERABILITY TITLE RISK
2022-11-22 CVE-2022-41326 Unspecified vulnerability in Mitel Micollab
The web conferencing component of Mitel MiCollab through 9.6.0.13 could allow an unauthenticated attacker to upload arbitrary scripts due to improper authorization controls.
network
low complexity
mitel
critical
9.8
2022-10-25 CVE-2022-36451 Server-Side Request Forgery (SSRF) vulnerability in Mitel Micollab
A vulnerability in the MiCollab Client server component of Mitel MiCollab through 9.5.0.101 could allow an authenticated attacker to conduct a Server-Side Request Forgery (SSRF) attack due to insufficient restriction of URL parameters.
network
low complexity
mitel CWE-918
8.8
2022-10-25 CVE-2022-36454 Unspecified vulnerability in Mitel Micollab
A vulnerability in the MiCollab Client API of Mitel MiCollab through 9.5.0.101 could allow an authenticated attacker to modify their profile parameters due to improper authorization controls.
network
low complexity
mitel
6.5
2020-08-26 CVE-2020-13767 Missing Authentication for Critical Function vulnerability in Mitel Micollab
The Mitel MiCollab application before 9.1.332 for iOS could allow an unauthorized user to access restricted files and folders due to insufficient access control.
network
mitel CWE-306
4.3