Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE network
low complexity
mitel
Published: 2020-08-26
Updated: 2021-07-21
Summary
An Authentication Bypass vulnerability in the Published Area of the web conferencing component of Mitel MiCollab AWV before 8.1.2.4 and 9.x before 9.1.3 could allow an unauthenticated attacker to gain access to unauthorized information due to insufficient access validation. A successful exploit could allow an attacker to access sensitive shared files.
Vulnerable Configurations
| Part | Description | Count |
| Application | Mitel - Mitel Micollab Audio, WEB & Video Conferencing 9.0
- Mitel Micollab Audio, WEB & Video Conferencing -
- Mitel Micollab Audio, WEB & Video Conferencing 5.0
- Mitel Micollab Audio, WEB & Video Conferencing 5.0.5.7
- Mitel Micollab Audio, WEB & Video Conferencing 6.0
- Mitel Micollab Audio, WEB & Video Conferencing 6.0.0.61
- Mitel Micollab Audio, WEB & Video Conferencing 6.1
- Mitel Micollab Audio, WEB & Video Conferencing 6.1.0.28
- Mitel Micollab Audio, WEB & Video Conferencing 6.2
- Mitel Micollab Audio, WEB & Video Conferencing 6.2.2.8
- Mitel Micollab Audio, WEB & Video Conferencing 6.3
- Mitel Micollab Audio, WEB & Video Conferencing 6.3.0.103
- Mitel Micollab Audio, WEB & Video Conferencing 7.3
- Mitel Micollab Audio, WEB & Video Conferencing 8.0
- Mitel Micollab Audio, WEB & Video Conferencing 8.0.2.301
- Mitel Micollab Audio, WEB & Video Conferencing 8.1
- Mitel Micollab Audio, WEB & Video Conferencing 8.1.1.11
| 17 |