← Back

Cellopoint

cellopoint

5 CVEs • 2 products

Products (2)

Click to collapse
Toggle
Cellos
cellos
3 CVEs
Secure Email Gateway
secure_email_gateway
2 CVEs

CVEs (5)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-9043
1Cellopoint
1Secure Email Gateway
Sep 25, 2024
Sep 20, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Secure Email Gateway from Cellopoint has Buffer Overflow Vulnerability in authentication process. Remote unauthenticated attackers can send crafted packets to crash the process, thereby bypassing authentication and obtai...Show more
Secure Email Gateway from Cellopoint has Buffer Overflow Vulnerability in authentication process. Remote unauthenticated attackers can send crafted packets to crash the process, thereby bypassing authentication and obtaining system administrator privileges.Show less
CVE-2024-6744
1Cellopoint
1Secure Email Gateway
Nov 21, 2024
Jul 15, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
The SMTP Listener of Secure Email Gateway from Cellopoint does not properly validate user input, leading to a Buffer Overflow vulnerability. An unauthenticated remote attacker can exploit this vulnerability to execute ar...Show more
The SMTP Listener of Secure Email Gateway from Cellopoint does not properly validate user input, leading to a Buffer Overflow vulnerability. An unauthenticated remote attacker can exploit this vulnerability to execute arbitrary system commands on the remote server.Show less
CVE-2020-17386
1Cellopoint
1Cellos
May 8, 2025
Aug 25, 2020
N/A· v4
6.5 MEDIUM· v3
4.0 MEDIUM· v2
Cellopoint CelloOS v4.1.10 Build 20190922 does not validate URL inputted properly. With cookie of an authenticated user, attackers can temper with the URL parameter and access arbitrary file on system.
CVE-2020-17385
1Cellopoint
1Cellos
May 8, 2025
Aug 25, 2020
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Cellopoint CelloOS v4.1.10 Build 20190922 does not validate URL inputted properly, which allows unauthorized user to launch Path Traversal attack and access arbitrate file on the system.
CVE-2020-17384
1Cellopoint
1Cellos
May 8, 2025
Aug 25, 2020
N/A· v4
7.2 HIGH· v3
9.0 HIGH· v2
Cellopoint CelloOS v4.1.10 Build 20190922 does not validate URL inputted properly. With the cookie of the system administrator, attackers can inject and remotely execute arbitrary command to manipulate the system.