Security Advisory

CVE-2021-27402

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-08-13 15:25:36

Last updated 2024-08-03 20:48:16

Assigner mitre

State PUBLISHED

Description

The SAS Admin portal of Mitel MiCollab before 9.2 FP2 could allow an unauthenticated attacker to access (view and modify) user data by injecting arbitrary directory paths due to improper URL validation, aka Directory Traversal.

← Browse all CVEs View on cve.org ↗