Cross-Site Scripting (XSS) Vulnerability in Mitel MiCollab Web Client before 9.2 FP2

CVE-2021-27401 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

The Join Meeting page of Mitel MiCollab Web Client before 9.2 FP2 could allow an attacker to access (view and modify) user data by executing arbitrary code due to insufficient input validation, aka Cross-Site Scripting (XSS).

Learn more about our Web App Pen Testing.