Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-42514

A vulnerability in the legacy chat component of Mitel MiContact Center Business through 10.1.0.4 could allow an unauthenticated attacker to conduct an unauthorized access attack due to inadequate access control checks. A successful exploit requires user interaction and could allow an attacker to access sensitive information and send unauthorized messages during an active chat session.

Published

2024-10-01T19:15:07.883

Last Modified

2025-05-30T01:26:00.767

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 8.1 (HIGH)

Weaknesses

Type: Secondary
CWE-284

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	mitel	micontact_center_business	≤ 10.1.0.4	Yes

References

https://www.mitel.com/-/media/mitel/file/pdf/support/security-advisories/security-bulletin_24-0024-001-v2.pdf Broken Link ([email protected])
https://www.mitel.com/support/security-advisories Vendor Advisory ([email protected])
https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-24-0024 Vendor Advisory ([email protected])