← Zuruck zu CVEs

CVE-2024-28815

CRITICAL

9.8

Beschreibung

A vulnerability in the BluStar component of Mitel InAttend 2.6 SP4 through 2.7 and CMG 8.5 SP4 through 8.6 could allow access to sensitive information, changes to the system configuration, or execution of arbitrary commands within the context of the system.

CVE Details

CVSS v3.1 Bewertung9.8

SchweregradCRITICAL

CVSS VektorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AngriffsvektorNETWORK

KomplexitatLOW

Erforderliche PrivilegienNONE

BenutzerinteraktionNONE

Veroffentlicht3/27/2024

Zuletzt geandert11/21/2024

Quellenvd

Honeypot-Sichtungen0

Schwachen (CWE)

CWE-1188

Referenzen

https://cwe.mitre.org/data/definitions/1188.html(cve@mitre.org)

https://www.mitel.com/-/media/mitel/file/pdf/support/security-advisories/security-bulletin_24-0003-001-v1.pdf(cve@mitre.org)

https://www.mitel.com/support/security-advisories(cve@mitre.org)

https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-24-0003(cve@mitre.org)

https://cwe.mitre.org/data/definitions/1188.html(af854a3a-2127-422b-91ae-364da2661108)

https://www.mitel.com/-/media/mitel/file/pdf/support/security-advisories/security-bulletin_24-0003-001-v1.pdf(af854a3a-2127-422b-91ae-364da2661108)

https://www.mitel.com/support/security-advisories(af854a3a-2127-422b-91ae-364da2661108)

https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-24-0003(af854a3a-2127-422b-91ae-364da2661108)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.