CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-36446

The provisioning manager component of Mitel MiVoice MX-ONE through 7.6 SP1 could allow an authenticated attacker to conduct an authentication bypass attack due to improper access control. A successful exploit could allow an attacker to bypass the authorization schema.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 53.8%

CVSS Severity

CVSS v3 Score 8.8

References

https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-24-0017

Products affected by CVE-2024-36446

Mitel » Mivoice Mx-One » Version: N/A

cpe:2.3:a:mitel:mivoice_mx-one:-
Mitel » Mivoice Mx-One » Version: 6.3

cpe:2.3:a:mitel:mivoice_mx-one:6.3
Mitel » Mivoice Mx-One » Version: 7.0

cpe:2.3:a:mitel:mivoice_mx-one:7.0
Mitel » Mivoice Mx-One » Version: 7.1

cpe:2.3:a:mitel:mivoice_mx-one:7.1
Mitel » Mivoice Mx-One » Version: 7.2

cpe:2.3:a:mitel:mivoice_mx-one:7.2
Mitel » Mivoice Mx-One » Version: 7.3

cpe:2.3:a:mitel:mivoice_mx-one:7.3
Mitel » Mivoice Mx-One » Version: 7.4

cpe:2.3:a:mitel:mivoice_mx-one:7.4
Mitel » Mivoice Mx-One » Version: 7.5

cpe:2.3:a:mitel:mivoice_mx-one:7.5
Mitel » Mivoice Mx-One » Version: 7.6

cpe:2.3:a:mitel:mivoice_mx-one:7.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-36446

Products

Pricing

Contact Us