CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-3176

The chat window of the Mitel BusinessCTI Enterprise (MBC-E) Client for Windows before 6.4.15 and 7.x before 7.1.2 could allow an attacker to gain access to user information by sending certain code, due to improper input validation of http links. A successful exploit could allow an attacker to view user information and application data.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 61.0%

CVSS Severity

CVSS v3 Score 8.0

CVSS v2 Score 6.0

References

Products affected by CVE-2021-3176

Mitel » Businesscti Enterprise » Version: N/A

cpe:2.3:a:mitel:businesscti_enterprise:-
Mitel » Businesscti Enterprise » Version: 6.4.10

cpe:2.3:a:mitel:businesscti_enterprise:6.4.10
Mitel » Businesscti Enterprise » Version: 6.4.11

cpe:2.3:a:mitel:businesscti_enterprise:6.4.11
Mitel » Businesscti Enterprise » Version: 6.4.14

cpe:2.3:a:mitel:businesscti_enterprise:6.4.14
Mitel » Businesscti Enterprise » Version: 7.0

cpe:2.3:a:mitel:businesscti_enterprise:7.0
Mitel » Businesscti Enterprise » Version: 7.0.0

cpe:2.3:a:mitel:businesscti_enterprise:7.0.0
Mitel » Businesscti Enterprise » Version: 7.0.2

cpe:2.3:a:mitel:businesscti_enterprise:7.0.2
Mitel » Businesscti Enterprise » Version: 7.0.3

cpe:2.3:a:mitel:businesscti_enterprise:7.0.3
Mitel » Businesscti Enterprise » Version: 7.1.1

cpe:2.3:a:mitel:businesscti_enterprise:7.1.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-3176

Products

Pricing

Contact Us