SQL Injection Vulnerability in Mitel MiCollab SAS Portal

SQL Injection Vulnerability in Mitel MiCollab SAS Portal

CVE-2020-25608 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

The SAS portal of Mitel MiCollab before 9.2 could allow an attacker to access user credentials due to improper input validation, aka SQL Injection.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.