RSS   Vulnerabilities for 'Misecuremessages'   RSS

2014-05-06
 
CVE-2014-2347

CWE-264
 

 
Amtelco miSecureMessages (aka MSM) 6.2 does not properly manage sessions, which allows remote authenticated users to obtain sensitive information via a modified message request.

 
2014-04-15
 
CVE-2014-0357

CWE-287
 

 
Amtelco miSecureMessages allows remote attackers to read the messages of arbitrary users via an XML request containing a valid license key and a modified contactID value, as demonstrated by a request from the iOS or Android application.

 


Copyright 2022, cxsecurity.com

 

Back to Top