Philippe Oechslin

Researcher fromObjectif Sécurité
#10923of 53,638
25.2Total CVSS
Vulnerabilities · 3
Medium
1
High
1
Critical
1
PT-2024-22244
6.1
2024-05-18
Kiteworks · Kiteworks Totemomail · CVE-2024-28063
**Name of the Vulnerable Software and Affected Versions** Kiteworks Totemomail versions through 7.0.0 **Description** The issue allows for reflected XSS through the `/responsiveUI/EnvelopeOpenServlet` endpoint, specifically targeting the `envelopeRecipient` parameter. This enables potential attackers to inject malicious scripts into the application. **Recommendations** For versions through 7.0.0, as a temporary workaround, consider restricting access to the `/responsiveUI/EnvelopeOpenServlet` endpoint to minimize the risk of exploitation. Avoid using the `envelopeRecipient` parameter in the affected endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2024-22245
9.8
2024-05-18
Kiteworks · Kiteworks Totemomail · CVE-2024-28064
**Name of the Vulnerable Software and Affected Versions** Kiteworks Totemomail versions 7.x through 8.2.1 **Description** The issue allows for directory traversal, enabling unauthenticated file read and delete operations, as well as write operations, through the `/responsiveUI/EnvelopeOpenServlet` endpoint, specifically with the `messageId` parameter, and the `displayLoginChunkedImages` and `storeLoginChunkedImages` variables. **Recommendations** For Kiteworks Totemomail versions 7.x through 8.2.1, update to version 8.3.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the `/responsiveUI/EnvelopeOpenServlet` endpoint until a patch is available. Avoid using the `messageId` parameter in the affected endpoint until the issue is resolved. Restrict the use of `displayLoginChunkedImages` and `storeLoginChunkedImages` variables to minimize the risk of exploitation.
PT-2015-6879
9.3
2015-07-16
Siemens · Sicam Mic · CVE-2015-5386
**Name of the Vulnerable Software and Affected Versions** Siemens SICAM MIC devices with firmware prior to 2404 **Description** The issue allows remote attackers to bypass authentication and obtain administrative access via unspecified HTTP requests. **Recommendations** For firmware versions prior to 2404, update the firmware to version 2404 or later to resolve the issue.