CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Mitel: >> Mivoice Office 400 >> r5.0 Security Vulnerabilities

CVE-2018-16226

A vulnerability in the web admin component of Mitel MiVoice Office 400, versions R5.0 HF3 (v8839a1) and earlier, could allow an unauthenticated attacker to conduct a reflected cross-site scripting (XSS) attack, due to insufficient validation for the start.asp page. A successful exploit could allow the attacker to execute arbitrary scripts to access sensitive browser-based information.

CVSS Score

6.1

EPSS Score

0.002

Published

2018-10-23

Page 1

Vulnerabilities

Vulnerable Software

Mitel: >> Mivoice Office 400 >> r5.0 Security Vulnerabilities

Products

Pricing

Contact Us