Vulnerabilities > Mitel > St14 2 > Medium

DATE CVE VULNERABILITY TITLE RISK
2018-03-13 CVE-2017-16250 Information Exposure vulnerability in Mitel St14.2 Ga28
A vulnerability in Mitel ST 14.2, release GA28 and earlier, could allow an attacker to use the API function to enumerate through user-ids which could be used to identify valid user ids and associated user names.
network
low complexity
mitel CWE-200
5.3