CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-0357

Amtelco miSecureMessages allows remote attackers to read the messages of arbitrary users via an XML request containing a valid license key and a modified contactID value, as demonstrated by a request from the iOS or Android application.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 69.0%

CVSS Severity

CVSS v2 Score 5.0

References

http://ics-cert.us-cert.gov/advisories/ICSA-14-121-01
http://www.kb.cert.org/vuls/id/251628
https://service.amtelco.com/INFINITY/MSM/MSM6.2SecurityBriefing.pdf
http://ics-cert.us-cert.gov/advisories/ICSA-14-121-01
http://www.kb.cert.org/vuls/id/251628
https://service.amtelco.com/INFINITY/MSM/MSM6.2SecurityBriefing.pdf

Products affected by CVE-2014-0357

Amtelco » Misecuremessages » Version: N/A

cpe:2.3:a:amtelco:misecuremessages:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-0357

Products

Pricing

Contact Us