The ccmweb component of Mitel MiContact Center Business server 9.2.2.0 up to and including 9.4.1.0 could allow an unauthenticated malicious user to download arbitrary files, due to insufficient restriction of URL parameters. A successful exploit could allow access to sensitive information.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mitel micontact center business |