CVE-2023-39288

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Aug 25, 2023
Updated: Aug 31, 2023
CWE ID 88

Summary

CVE-2023-39288 is a vulnerability affecting Mitel MiVoice Connect's Connect Mobility Router component up to version 9.6.2304.102. An authenticated attacker with elevated privileges and internal network access can take advantage of insufficient parameter sanitization to inject malicious commands. A successful exploit could result in an attacker accessing network information and generating excessive network traffic. This vulnerability poses a significant risk and requires prompt remediation.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share