Vulnerability Details CVE-2020-11797
An Authentication Bypass vulnerability in the Published Area of the web conferencing component of Mitel MiCollab AWV before 8.1.2.4 and 9.x before 9.1.3 could allow an unauthenticated attacker to gain access to unauthorized information due to insufficient access validation. A successful exploit could allow an attacker to access sensitive shared files.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 65.3%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
Products affected by CVE-2020-11797
-
_web_&_video_conferencing:-
-
_web_&_video_conferencing:5.0
-
_web_&_video_conferencing:5.0.5.7
-
_web_&_video_conferencing:6.0
-
_web_&_video_conferencing:6.0.0.61
-
_web_&_video_conferencing:6.1
-
_web_&_video_conferencing:6.1.0.28
-
_web_&_video_conferencing:6.2
-
_web_&_video_conferencing:6.2.2.8
-
_web_&_video_conferencing:6.3
-
_web_&_video_conferencing:6.3.0.103
-
_web_&_video_conferencing:7.3
-
_web_&_video_conferencing:8.0
-
_web_&_video_conferencing:8.0.2.301
-
_web_&_video_conferencing:8.1
-
_web_&_video_conferencing:8.1.1.11
-
_web_&_video_conferencing:9.0
-
cpe:2.3:a:mitel:micollab_audio