The chat window of the Mitel BusinessCTI Enterprise (MBC-E) Client for Windows prior to 6.4.15 and 7.x prior to 7.1.2 could allow an malicious user to gain access to user information by sending certain code, due to improper input validation of http links. A successful exploit could allow an malicious user to view user information and application data.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mitel businesscti enterprise |