CVE-2024-47224
Oct. 21, 2024, 9:15 p.m.
Tags
Product(s) Impacted
Mitel MiCollab
- through 9.8 SP1 FP2 (9.8.1.201)
Description
A vulnerability in the AWV (Audio, Web and Video Conferencing) component of Mitel MiCollab through 9.8 SP1 FP2 (9.8.1.201) could allow an unauthenticated attacker to conduct a CRLF injection attack due to inadequate encoding of user input in URLs. A successful exploit could allow an attacker to perform a phishing attack.
Weaknesses
Date
Published: Oct. 21, 2024, 9:15 p.m.
Last Modified: Oct. 21, 2024, 9:15 p.m.
Status : Received
CVE has been recently published to the CVE List and has been received by the NVD.
More infoSource
cve@mitre.org