CVE-2024-35284

2024-05-2916:15:10

[email protected]

web.nvd.nist.gov

vulnerability

mitel micontact center

legacy chat

unauthenticated

reflected cross-site scripting

input validation

5.8 Medium

AI Score

Confidence

High

0 Low

EPSS

Percentile

0.0%

JSON

A vulnerability in the legacy chat component of Mitel MiContact Center Business through 10.0.0.4 could allow an unauthenticated attacker to conduct a reflected cross-site scripting (XSS) attack due to insufficient input validation.

References

www.mitel.com/support/security-advisories/mitel-product-security-advisory-24-0012