5.2 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
36.4%
A vulnerability in Mitel ST 14.2, release GA28 and earlier, could allow an attacker to use the API function to enumerate through user-ids which could be used to identify valid user ids and associated user names.
www.mitel.com/support/security-advisories/mitel-product-security-advisory-18-0004