CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-27154

The chat window of Mitel BusinessCTI Enterprise (MBC-E) Client for Windows before 6.4.11 and 7.x before 7.0.3 could allow an attacker to gain access to user information by sending arbitrary code, due to improper input validation. A successful exploit could allow an attacker to view the user information and application data.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 65.7%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.5

References

https://www.mitel.com/support/security-advisories
https://www.mitel.com/support/security-advisories

Products affected by CVE-2020-27154

Mitel » Businesscti Enterprise » Version: N/A

cpe:2.3:a:mitel:businesscti_enterprise:-
Mitel » Businesscti Enterprise » Version: 6.4.10

cpe:2.3:a:mitel:businesscti_enterprise:6.4.10
Mitel » Businesscti Enterprise » Version: 7.0.0

cpe:2.3:a:mitel:businesscti_enterprise:7.0.0
Mitel » Businesscti Enterprise » Version: 7.0.2

cpe:2.3:a:mitel:businesscti_enterprise:7.0.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-27154

Products

Pricing

Contact Us