The AWV and MiCollab Client Service components in Mitel MiCollab prior to 9.3 could allow an malicious user to perform a Man-In-the-Middle attack by sending multiple session renegotiation requests, due to insufficient TLS session controls. A successful exploit could allow an malicious user to modify application data and state.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mitel micollab |