Security Advisory

CVE-2024-47223

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-10-21 00:00:00

Last updated 2024-10-22 17:22:08

Assigner mitre

State PUBLISHED

Description

A vulnerability in the AWV (Audio, Web and Video Conferencing) component of Mitel MiCollab through 9.8 SP1 FP2 (9.8.1.201) could allow an unauthenticated attacker to conduct a SQL injection attack due to insufficient sanitization of user input. A successful exploit could allow an attacker to access non-sensitive user provisioning information and execute arbitrary SQL database commands.

← Browse all CVEs View on cve.org ↗