CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-31460

A vulnerability in the Connect Mobility Router component of MiVoice Connect versions 9.6.2208.101 and earlier could allow an authenticated attacker with internal network access to conduct a command injection attack due to insufficient restriction on URL parameters.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.024

EPSS Ranking 84.2%

CVSS Severity

CVSS v3 Score 7.2

References

https://www.mitel.com/support/security-advisories
https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-23-0007
https://www.mitel.com/support/security-advisories
https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-23-0007

Products affected by CVE-2023-31460

Mitel » Mivoice Connect » Version: N/A

cpe:2.3:a:mitel:mivoice_connect:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-31460

Products

Pricing

Contact Us