A vulnerability in the Edge Gateway component of Mitel MiVoice Connect through R19.3 SP3 (22.24.5800.0) could allow an authenticated attacker with elevated privileges to conduct an information disclosure attack due to improper configuration. A successful exploit could allow an attacker to view system information.
References
Link | Resource |
---|---|
https://www.mitel.com/support/security-advisories | Vendor Advisory |
https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-23-0012 | Vendor Advisory |
Configurations
History
31 Aug 2023, 18:22
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-23-0012 - Vendor Advisory | |
References | (MISC) https://www.mitel.com/support/security-advisories - Vendor Advisory | |
First Time |
Mitel
Mitel mivoice Connect |
|
CPE | cpe:2.3:a:mitel:mivoice_connect:*:*:*:*:*:*:*:* | |
CWE | NVD-CWE-noinfo | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 4.9 |
25 Aug 2023, 22:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-08-25 22:15
Updated : 2023-12-10 15:14
NVD link : CVE-2023-39290
Mitre link : CVE-2023-39290
CVE.ORG link : CVE-2023-39290
JSON object : View
Products Affected
mitel
- mivoice_connect
CWE