Mitel MiCloud Management Portal before 6.1 SP5 could allow an attacker, by sending a crafted request, to view system information due to insufficient output sanitization.
References
Link | Resource |
---|---|
https://www.mitel.com/support/security-advisories | Vendor Advisory |
https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-20-0010 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2020-09-25 04:23
Updated : 2024-02-28 18:08
NVD link : CVE-2020-24592
Mitre link : CVE-2020-24592
CVE.ORG link : CVE-2020-24592
JSON object : View
Products Affected
mitel
- micloud_management_portal
CWE
CWE-116
Improper Encoding or Escaping of Output