exploitDog

CVE-2020-25606

Опубликовано: 18 дек. 2020

Источник: nvd

CVSS3: 6.1

CVSS2: 4.3

EPSS Низкий

Описание

The AWV component of Mitel MiCollab before 9.2 could allow an attacker to view system information by sending arbitrary code due to improper input validation, aka XSS.

Ссылки

https://www.mitel.com/support/security-advisories
Vendor Advisory
https://www.mitel.com/support/security-advisories
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:mitel:micollab:*:*:*:*:*:-:*:*

Версия до 9.2 (исключая)

EPSS

Процентиль: 58%

0.00359

Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-2vgw-q9j2-j47q

github

больше 3 лет назад

The AWV component of Mitel MiCollab before 9.2 could allow an attacker to view system information by sending arbitrary code due to improper input validation, aka XSS.

EPSS

Процентиль: 58%

0.00359

Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-20