2 matches found
CVE-2018-5779
A vulnerability in the conferencing component of Mitel Connect ONSITE, versions R1711-PREM and earlier, and Mitel ST 14.2, release GA28 and earlier, could allow an unauthenticated attacker to copy a malicious script into a newly generated PHP file and then execute the generated file using special...
CVE-2018-5779
Mit el Connect ONSITE (R1711-PREM and earlier) and Mitel ST (14.2 GA28 and earlier) contain a conferencing-component vulnerability that allows an unauthenticated attacker to copy a malicious script into a newly generated PHP file and then execute it via specially crafted requests, enabling arbitr...