The Software Development Kit in Mitel MiContact Center Business from 8.0.0.0 through 8.1.4.1 and 9.0.0.0 through 9.3.1.0 could allow an unauthenticated attacker to access (view and modify) user data without authorization due to improper handling of tokens.
References
Link | Resource |
---|---|
https://www.mitel.com/support/security-advisories | Vendor Advisory |
https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-21-0002 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
25 Aug 2021, 13:55
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-21-0002 - Vendor Advisory | |
References | (MISC) https://www.mitel.com/support/security-advisories - Vendor Advisory | |
CWE | NVD-CWE-Other | |
CPE | cpe:2.3:a:mitel:micontact_center_business:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : 6.4
v3 : 9.1 |
13 Aug 2021, 16:24
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-08-13 16:15
Updated : 2023-12-10 13:55
NVD link : CVE-2021-3352
Mitre link : CVE-2021-3352
CVE.ORG link : CVE-2021-3352
JSON object : View
Products Affected
mitel
- micontact_center_business
CWE