CVE-2023-39286
14.09.2023, 19:16
A vulnerability in the Connect Mobility Router component of Mitel MiVoice Connect through 9.6.2304.102 could allow an unauthenticated attacker to perform a Cross Site Request Forgery (CSRF) attack due to insufficient request validation. A successful exploit could allow an attacker to provide a modified URL, potentially enabling them to modify system configuration settings.
| Vendor | Product | Version |
|---|---|---|
| mitel | connect_mobility_router | 𝑥 < 9.6.2307.111 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration