A vulnerability in the Edge Gateway component of Mitel MiVoice Connect up to and including 19.3 SP3 (22.24.5800.0) could allow an unauthenticated malicious user to perform a Cross Site Request Forgery (CSRF) attack due to insufficient request validation. A successful exploit could allow an malicious user to provide a modified URL, potentially enabling them to modify system configuration settings.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mitel mivoice connect |