CVE Vulnerabilities

CVE-2020-11797

Published: Aug 26, 2020 | Modified: Jul 21, 2021
CVSS 3.x
7.5
HIGH
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

An Authentication Bypass vulnerability in the Published Area of the web conferencing component of Mitel MiCollab AWV before 8.1.2.4 and 9.x before 9.1.3 could allow an unauthenticated attacker to gain access to unauthorized information due to insufficient access validation. A successful exploit could allow an attacker to access sensitive shared files.

Affected Software

Name Vendor Start Version End Version
Micollab_audio,web&_video_conferencing Mitel * 8.1.2.4 (excluding)
Micollab_audio,web&_video_conferencing Mitel 9.0 (including) 9.1.3 (excluding)

References