exploitDog

CVE-2023-39290

Опубликовано: 25 авг. 2023

Источник: nvd

CVSS3: 4.9

EPSS Низкий

Описание

A vulnerability in the Edge Gateway component of Mitel MiVoice Connect through R19.3 SP3 (22.24.5800.0) could allow an authenticated attacker with elevated privileges to conduct an information disclosure attack due to improper configuration. A successful exploit could allow an attacker to view system information.

Ссылки

https://www.mitel.com/support/security-advisories
Vendor Advisory
https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-23-0012
Vendor Advisory
https://www.mitel.com/support/security-advisories
Vendor Advisory
https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-23-0012
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:mitel:mivoice_connect:*:*:*:*:*:*:*:*

Версия до 22.24.5800.0 (включая)

EPSS

Процентиль: 32%

0.00123

Низкий

4.9 Medium

CVSS3

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-g7qh-5fxc-ch87

CVSS3: 4.9

github

больше 2 лет назад

A vulnerability in the Edge Gateway component of Mitel MiVoice Connect through R19.3 SP3 (22.24.5800.0) could allow an authenticated attacker with elevated privileges to conduct an information disclosure attack due to improper configuration. A successful exploit could allow an attacker to view system information.

EPSS

Процентиль: 32%

0.00123

Низкий

4.9 Medium

CVSS3

Дефекты

NVD-CWE-noinfo