CVE-2014-2347

CVE-2014-2347: AMTELCO miSecure Information Exposure

Vendor Amtelco

Product miSecureMessages

Weakness CWE-200 · Info exposure

Published May 6, 2014

Last update October 2, 2025

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

Amtelco miSecureMessages (aka MSM) 6.2 does not properly manage sessions, which allows remote authenticated users to obtain sensitive information via a modified message request.

Key dates

02Disclosure timeline

May 6, 2014 CVE published

October 2, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2014-2347 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/200.html

Related vulnerabilities

04Related CVE

CVE-2022-39222 OAuth authorization code exposure in Dex CVE-2022-31190 Metadata of withdrawn Items is exposed to anonymous users in DSpace XMLUI CVE-2026-43992 JunoClaw: MCP write tools exposed raw BIP-39 mnemonic as a tool-call parameter CVE-2024-10352 Magical Addons For Elementor <= 1.2.4 - Authenticated (Contributor+) Sensitive Information Exposure via Elementor Template CVE-2025-7368 Rehub <= 19.9.7 - Unauthenticated Password Protected Post Disclosure