Input validation

2020-09-2504:23:00

PRIOn knowledge base

www.prio-n.com

9.5 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.7%

JSON

Mitel MiCloud Management Portal before 6.1 SP5 could allow an unauthenticated attacker to execute arbitrary scripts due to insufficient input validation, aka XSS. A successful exploit could allow an attacker to gain access to a user session.

CPENameOperatorVersion
micloud_management_portaleq6.1
micloud_management_portalle6.0
micloud_management_portaleq6.1 sp4

Name	Operator	Version
micloud_management_portal	eq	6.1
micloud_management_portal	le	6.0
micloud_management_portal	eq	6.1 sp4

References

www.mitel.com/support/security-advisories

www.mitel.com/support/security-advisories/mitel-product-security-advisory-20-0010