Mitel MiCloud Management Portal before 6.1 SP5 could allow an unauthenticated attacker to execute arbitrary scripts due to insufficient input validation, aka XSS. A successful exploit could allow an attacker to gain access to a user session.
CPE | Name | Operator | Version |
---|---|---|---|
micloud_management_portal | eq | 6.1 | |
micloud_management_portal | le | 6.0 | |
micloud_management_portal | eq | 6.1 sp4 |