Back

CVE-2024-31965

May 2, 2024, 6 p.m.

Awaiting Analysis
CVE has been recently published to the CVE List and has been received by the NVD.

Products

Mitel 6800 Series and 6900 Series SIP Phones

  • through 6.3 SP3 HF4

Mitel 6800 Series SIP Phones

  • through 6.3 SP3 HF4

Mitel 6900 Series SIP Phones

  • through 6.3 SP3 HF4

Mitel 6970 Conference Unit

  • through 6.3 SP3 HF4

Source

cve@mitre.org

Tags

cve@mitre.org
2024-05-02
CVE-2024-31965

CVE-2024-31965 details

Published : May 2, 2024, 4:15 p.m.
Last Modified : May 2, 2024, 6 p.m.

Description

A vulnerability on Mitel 6800 Series and 6900 Series SIP Phones, including 6970 Conference Unit, through 6.3 SP3 HF4 allows an authenticated attacker with administrative privilege to conduct a path traversal attack due to insufficient input validation. A successful exploit could allow an attacker to access sensitive information.

CVSS Score

1 2 3 4 5 6 7 8 9 10

Weakness

Weakness Name Description

References

URL Source
https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-24-0008 cve@mitre.org
This website uses the NVD API, but is not approved or certified by it.