CVE-2014-0357
Amtelco miSecureMessages allows remote attackers to read the messages of arbitrary users via an XML request containing a valid license key and a modified contactID value, as demonstrated by a request from the iOS or Android application.
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.0164 (1.6%)
Percentil: 82.0%
EPSS: 2026-05-06
Afecta
amtelco:misecuremessagesDescripción técnica
Amtelco miSecureMessages allows remote attackers to read the messages of arbitrary users via an XML request containing a valid license key and a modified contactID value, as demonstrated by a request from the iOS or Android application.
Publicada: 15/4/2014, 10:55:12
Última modificación: 6/5/2026, 22:30:45
Referencias
- http://ics-cert.us-cert.gov/advisories/ICSA-14-121-01
- http://www.kb.cert.org/vuls/id/251628
- https://service.amtelco.com/INFINITY/MSM/MSM6.2SecurityBriefing.pdf
- http://ics-cert.us-cert.gov/advisories/ICSA-14-121-01
- http://www.kb.cert.org/vuls/id/251628
- https://service.amtelco.com/INFINITY/MSM/MSM6.2SecurityBriefing.pdf