Insecure Header Response Vulnerability in Mitel MiCollab Client Service

Insecure Header Response Vulnerability in Mitel MiCollab Client Service

CVE-2021-32070 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

The MiCollab Client Service component in Mitel MiCollab before 9.3 could allow an attacker to perform a clickjacking attack due to an insecure header response. A successful exploit could allow an attacker to modify the browser header and redirect users.

Learn more about our User Device Pen Test.