Cross-Site Scripting (XSS) Vulnerability in Mitel MiContact Center Business before 9.3.0.0

Cross-Site Scripting (XSS) Vulnerability in Mitel MiContact Center Business before 9.3.0.0

CVE-2020-24692 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

The Ignite portal in Mitel MiContact Center Business before 9.3.0.0 could allow an attacker to execute arbitrary scripts due to insufficient input validation, aka XSS. A successful exploit could allow an attacker to gain access to a user session.

Learn more about our Contact.