9.8
CVE-2023-31457
- EPSS 0.52%
- Veröffentlicht 24.05.2023 20:15:09
- Zuletzt bearbeitet 31.01.2025 14:15:32
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginA vulnerability in the Headquarters server component of Mitel MiVoice Connect versions 19.3 SP2 (22.24.1500.0) and earlier could allow an unauthenticated attacker with internal network access to execute arbitrary scripts due to improper access control.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Mitel ≫ Mivoice Connect Version <= 22.24.1500.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.52% | 0.659 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.8 | 3.9 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 9.8 | 3.9 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|