CVE-2021-32068

LOW Year: 2021
CVSS v3 Score
3.7
Low
CVSS v2 Score
4.3
Medium
Weakness Type
CWE-770
View all →

Vulnerability Description

The AWV and MiCollab Client Service components in Mitel MiCollab before 9.3 could allow an attacker to perform a Man-In-the-Middle attack by sending multiple session renegotiation requests, due to insufficient TLS session controls. A successful exploit could allow an attacker to modify application data and state.

Related Vulnerabilities

CVE-2019-14834

LOW
CVSS:3.7(Low)

A vulnerability was found in dnsmasq before version 2.81, where the memory leak allows remote attackers to cause a denial of service (memory consumption) via vectors involving DHCP response creation.

CWE-7702019

CVE-2023-49559

LOW
CVSS:3.7(Low)

An issue in vektah gqlparser open-source-library v.2.5.10 allows a remote attacker to cause a denial of service via a crafted script to the parserDirectives function.

CWE-7702023

CVE-2024-21011

LOW
CVSS:3.7(Low)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: ...

CWE-7702024

CVE-2024-3302

LOW
CVSS:3.7(Low)

There was no limit to the number of HTTP/2 CONTINUATION frames that would be processed. A server could abuse this to create an Out of Memory condition in the browser. This vulnerability affects Firefo...

CWE-7702024

CVE-2022-3273

LOW
CVSS:3.6(Low)

Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0a4.

CWE-7702022

CVE-2019-10163

LOW
CVSS:3.5(Low)

A Vulnerability has been found in PowerDNS Authoritative Server before versions 4.1.9, 4.0.8 allowing a remote, authorized master server to cause a high CPU load or even prevent any further updates to...

CWE-7702019