CVE-2019-19608

2020-03-02T18:15:00
ID CVE-2019-19608
Type cve
Reporter cve@mitre.org
Modified 2020-03-04T17:05:00

Description

A SQL injection vulnerability in in the web conferencing component of Mitel MiCollab AWV before 8.1.2.2 could allow an unauthenticated attack due to insufficient input validation for the registeredList.cgi page. A successful exploit could allow an attacker to extract sensitive information from the database and execute arbitrary scripts.