Lucene search
MitreCVELIST:CVE-2023-39286HistorySep 14, 2023 - 12:00 a.m.
CVE-2023-39286
2023-09-1400:00:00
mitre
www.cve.org
cve-2023-39286
cross site request forgery
csrf attack
mitel mivoice connect
connect mobility router
insufficient request validation
system configuration settings
A vulnerability in the Connect Mobility Router component of Mitel MiVoice Connect through 9.6.2304.102 could allow an unauthenticated attacker to perform a Cross Site Request Forgery (CSRF) attack due to insufficient request validation. A successful exploit could allow an attacker to provide a modified URL, potentially enabling them to modify system configuration settings.
Related
cve
cve
CVE-2023-39286
2023-09-14 19:16:50
prion
prion
Cross site request forgery (csrf)
2023-09-14 19:16:00
nvd
nvd
CVE-2023-39286
2023-09-14 19:16:50