The Director database component of MiVoice Connect up to and including 19.3 (22.22.6100.0) could allow an authenticated malicious user to conduct a code-injection attack via crafted data due to insufficient restrictions on the database data type.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mitel mivoice connect |
||
mitel mivoice connect 19.3 |