CVE-2023-31460

CVSS V2 None CVSS V3 None

Description

A vulnerability in the Connect Mobility Router component of MiVoice Connect versions 9.6.2208.101 and earlier could allow an authenticated attacker with internal network access to conduct a command injection attack due to insufficient restriction on URL parameters.

Overview

CVE ID
CVE-2023-31460

Assigner
cve@mitre.org

Vulnerability Status
Received

Published Version
2023-05-24T20:15:10

Last Modified Date
2023-05-24T20:15:10

References

Reference URL	Reference Tags
https://www.mitel.com/support/security-advisories
https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-23-0007

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2023-31460
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31460

History

Created	Old Value	New Value	Data Type	Notes
2023-05-24 21:00:44				Added to TrackCVE