2 matches found
CVE-2020-27154
The chat window of Mitel BusinessCTI Enterprise MBC-E Client for Windows before 6.4.11 and 7.x before 7.0.3 could allow an attacker to gain access to user information by sending arbitrary code, due to improper input validation. A successful exploit could allow an attacker to view the user...
CVE-2020-27154
The CVE concerns Mitel BusinessCTI Enterprise (MBC-E) Client for Windows prior to 6.4.11 and 7.x prior to 7.0.3. The issue arises from improper input validation in the chat window, enabling an attacker to send arbitrary code and potentially view user information and application data. Exploitation...