Описание
The Ignite portal in Mitel MiContact Center Business before 9.3.0.0 could allow an attacker to execute arbitrary scripts due to insufficient input validation, aka XSS. A successful exploit could allow an attacker to gain access to a user session.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 9.3.0.0 (исключая)
cpe:2.3:a:mitel:micontact_center_business:*:*:*:*:*:*:*:*
EPSS
Процентиль: 35%
0.00143
Низкий
7.1 High
CVSS3
3.6 Low
CVSS2
Дефекты
CWE-20
Связанные уязвимости
github
больше 3 лет назад
The Ignite portal in Mitel MiContact Center Business before 9.3.0.0 could allow an attacker to execute arbitrary scripts due to insufficient input validation, aka XSS. A successful exploit could allow an attacker to gain access to a user session.
EPSS
Процентиль: 35%
0.00143
Низкий
7.1 High
CVSS3
3.6 Low
CVSS2
Дефекты
CWE-20