vulnerability
CVE-2022-29499: Mitel MiVoice Connect: Unauthenticated Remote Code Execution vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:L/Au:N/C:C/I:C/A:C) | Apr 25, 2022 | Jul 8, 2022 | Apr 14, 2024 |
Severity
9
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Published
Apr 25, 2022
Added
Jul 8, 2022
Modified
Apr 14, 2024
Description
The Service Appliance component in Mitel MiVoice Connect through 19.2 SP3 allows remote code execution because of incorrect data validation. The Service Appliances are SA 100, SA 400, and Virtual SA.
Solution
mitel-mivoice-cve-2022-29499
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.