CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-19275

The BluStar component in Mitel InAttend before 2.5 SP3 and CMG before 8.4 SP3 Suite Servers has a default password, which could allow remote attackers to gain unauthorized access and execute arbitrary scripts with potential impacts to the confidentiality, integrity and availability of the system.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.031

EPSS Ranking 86.2%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 10.0

References

https://www.mitel.com/-/media/mitel/pdf/security-advisories/security-bulletin-190002001-v10.pdf
https://www.mitel.com/en-gb/support/security-advisories/mitel-product-security-advisory-19-0002
https://www.mitel.com/-/media/mitel/pdf/security-advisories/security-bulletin-190002001-v10.pdf
https://www.mitel.com/en-gb/support/security-advisories/mitel-product-security-advisory-19-0002

Products affected by CVE-2018-19275

Mitel » Cmg Suite » Version: Any

cpe:2.3:a:mitel:cmg_suite:*
Mitel » Cmg Suite » Version: 8.4

cpe:2.3:a:mitel:cmg_suite:8.4
Mitel » Inattend » Version: Any

cpe:2.3:a:mitel:inattend:*
Mitel » Inattend » Version: 2.5

cpe:2.3:a:mitel:inattend:2.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-19275

Products

Pricing

Contact Us