Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability in the MiCollab Client server component of Mitel MiCollab through 9.5.0.101 could allow an authenticated attacker to conduct a Server-Side Request Forgery (SSRF) attack due to insufficient restriction of URL parameters. A successful exploit could allow an attacker to leverage connections and permissions available to the host server.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mitel MiCollab 代码问题漏洞
Vulnerability Description
Mitel MiCollab是加拿大敏迪(Mitel)公司的一款为员工提供语音、视频、消息、音频会议和团队协作的移动应用程序。 Mitel MiCollab 9.5.0.101及之前版本存在安全漏洞,该漏洞源于客户端服务器组件中对URL参数限制不足,可能允许经过身份验证的攻击者进行服务器端请求伪造(SSRF)攻击,成功利用可能允许攻击者利用主机服务器的连接和权限。
CVSS Information
N/A
Vulnerability Type
N/A