The AWV portal of Mitel MiCollab prior to 9.2 could allow an malicious user to gain access to conference information by sending arbitrary code due to improper input validation, aka XSS. Successful exploitation could allow an malicious user to view user conference information.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mitel micollab |