A vulnerability in the MiCollab Client API of Mitel MiCollab 9.1.3 through 9.5.0.101 could allow an authenticated attacker to modify their profile parameters due to improper authorization controls. A successful exploit could allow the authenticated attacker to control another extension number.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Micollab | Mitel | 9.1.3 (including) | 9.5.0.101 (including) |