Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-39290

A vulnerability in the Edge Gateway component of Mitel MiVoice Connect through R19.3 SP3 (22.24.5800.0) could allow an authenticated attacker with elevated privileges to conduct an information disclosure attack due to improper configuration. A successful exploit could allow an attacker to view system information.

Published

2023-08-25T22:15:11.120

Last Modified

2024-11-21T08:15:04.863

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 4.9 (MEDIUM)

Weaknesses

Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	mitel	mivoice_connect	≤ 22.24.5800.0	Yes

References

https://www.mitel.com/support/security-advisories Vendor Advisory ([email protected])
https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-23-0012 Vendor Advisory ([email protected])
https://www.mitel.com/support/security-advisories Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-23-0012 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)