Remote Message Reading Vulnerability in Amtelco miSecureMessages

Remote Message Reading Vulnerability in Amtelco miSecureMessages

CVE-2014-0357 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Amtelco miSecureMessages allows remote attackers to read the messages of arbitrary users via an XML request containing a valid license key and a modified contactID value, as demonstrated by a request from the iOS or Android application.

Learn more about our Cis Benchmark Audit For Apple Ios.