Mitel Networks MiVoice Connect UCB Component Code Execution Vulnerability

Mitel Networks MiVoice Connect is Mitel Networks Canada's software for centralized management of Mitel Networks' call handling and collaboration tools. A remote code execution vulnerability exists in the UCB component of Mitel Networks MiVoice Connect prior to version 19.1 SP1, which stems from...

CVE-2020-10211

A remote code execution vulnerability in UCB component of Mitel MiVoice Connect before 19.1 SP1 could allow an unauthenticated remote attacker to execute arbitrary scripts due to insufficient validation of URL parameters. A successful exploit could allow an attacker to gain access to sensitive...

CVE-2020-10211

A remote code execution vulnerability in UCB component of Mitel MiVoice Connect before 19.1 SP1 could allow an unauthenticated remote attacker to execute arbitrary scripts due to insufficient validation of URL parameters. A successful exploit could allow an attacker to gain access to sensitive...

CVE-2020-10211

Mitel MiVoice Connect (UCB component) is affected by CVE-2020-10211, prior to version 19.1 SP1. The issue stems from insufficient validation of URL parameters, enabling an unauthenticated remote attacker to execute arbitrary scripts. Reported impact includes access to sensitive information and po...