Security Advisory

CVE-2019-19370

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-03-02 17:54:00

Last updated 2024-08-05 02:16:47

Assigner mitre

State PUBLISHED

Description

A cross-site scripting (XSS) vulnerability in the web conferencing component of the Mitel MiCollab application before 9.0.15 for Android could allow an unauthenticated attacker to conduct a reflected cross-site scripting (XSS) attack due to insufficient validation in the file upload interface. A successful exploit could allow an attacker to execute arbitrary scripts.

← Browse all CVEs View on cve.org ↗