A remote code execution vulnerability in UCB component of Mitel MiVoice Connect prior to 19.1 SP1 could allow an unauthenticated remote malicious user to execute arbitrary scripts due to insufficient validation of URL parameters. A successful exploit could allow an malicious user to gain access to sensitive information.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mitel mivoice connect |
||
mitel mivoice connect client |