Описание
The BluStar component in Mitel InAttend before 2.5 SP3 and CMG before 8.4 SP3 Suite Servers has a default password, which could allow remote attackers to gain unauthorized access and execute arbitrary scripts with potential impacts to the confidentiality, integrity and availability of the system.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 8.4 (исключая)Версия до 2.5 (исключая)
Одно из
cpe:2.3:a:mitel:cmg_suite:*:*:*:*:*:*:*:*
cpe:2.3:a:mitel:cmg_suite:8.4:-:*:*:*:*:*:*
cpe:2.3:a:mitel:cmg_suite:8.4:sp2:*:*:*:*:*:*
cpe:2.3:a:mitel:inattend:*:*:*:*:*:*:*:*
cpe:2.3:a:mitel:inattend:2.5:-:*:*:*:*:*:*
cpe:2.3:a:mitel:inattend:2.5:sp1:*:*:*:*:*:*
cpe:2.3:a:mitel:inattend:2.5:sp2:*:*:*:*:*:*
EPSS
Процентиль: 87%
0.03122
Низкий
9.8 Critical
CVSS3
10 Critical
CVSS2
Дефекты
CWE-1188
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
The BluStar component in Mitel InAttend before 2.5 SP3 and CMG before 8.4 SP3 Suite Servers has a default password, which could allow remote attackers to gain unauthorized access and execute arbitrary scripts with potential impacts to the confidentiality, integrity and availability of the system.
EPSS
Процентиль: 87%
0.03122
Низкий
9.8 Critical
CVSS3
10 Critical
CVSS2
Дефекты
CWE-1188