Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability in the Edge Gateway component of Mitel MiVoice Connect through 19.3 (22.22.6100.0) could allow an authenticated attacker with internal network access to conduct a command-injection attack, due to insufficient restriction of URL parameters.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mitel MiVoice Connect 命令注入漏洞
Vulnerability Description
Mitel MiVoice Connect是加拿大敏迪(Mitel)公司的一款用于集中管理Mitel Networks的呼叫处理和协作工具的软件。 Mitel MiVoice Connect 19.3 (22.22.6100.0)及之前版本存在安全漏洞,该漏洞源于Edge Gateway组件对URL参数的限制不充分,可能允许具有内部网络访问权限的经过身份验证的攻击者进行命令注入攻击。
CVSS Information
N/A
Vulnerability Type
N/A