A vulnerability in the Headquarters server component of Mitel MiVoice Connect versions 19.3 SP2 (22.24.1500.0) and earlier could allow an unauthenticated attacker with internal network access to execute arbitrary scripts due to improper access control.
References
| Link | Resource |
|---|---|
| https://www.mitel.com/support/security-advisories | Vendor Advisory |
| https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-23-0004 | Vendor Advisory |
| https://www.mitel.com/support/security-advisories | Vendor Advisory |
| https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-23-0004 | Vendor Advisory |
Configurations
History
21 Nov 2024, 08:01
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://www.mitel.com/support/security-advisories - Vendor Advisory | |
| References | () https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-23-0004 - Vendor Advisory |
Information
Published : 2023-05-24 20:15
Updated : 2025-01-31 14:15
NVD link : CVE-2023-31457
Mitre link : CVE-2023-31457
CVE.ORG link : CVE-2023-31457
JSON object : View
Products Affected
mitel
- mivoice_connect
CWE