CVE-2018-9101 - OpenCVE

A vulnerability in the conferencing component of Mitel MiVoice Connect, versions R1707-PREM SP1 (21.84.5535.0) and earlier, and Mitel ST 14.2, versions GA27 (19.49.5200.0) and earlier, could allow an unauthenticated attacker to conduct a reflected cross-site scripting (XSS) attack due to insufficient validation for the launch_presenter.php page. A successful exploit could allow an attacker to execute arbitrary scripts.

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction Required

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

AV:N/AC:M/Au:N/C:N/I:P/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Mitel	St 14.2 Mivoice Connect

Configuration 1 [-]

OR	cpe:2.3:a:mitel:mivoice_connect::::::::
	cpe:2.3:a:mitel:st_14.2::::::::

References

Link	Resource
https://www.mitel.com/mitel-product-security-advisory-18-0003	Broken Link Vendor Advisory
https://www.mitel.com/sites/default/files/2018-Security-Bulletin-18-0003-001.pdf	Broken Link Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2018-04-25T20:00:00

Updated: 2018-04-25T19:57:01

Reserved: 2018-03-27T00:00:00

Link: CVE-2018-9101

JSON object: View

NVD Information

Status : Analyzed

Published: 2018-04-25T20:29:00.573

Modified: 2018-05-24T17:21:27.447

Link: CVE-2018-9101

JSON object: View

Redhat Information

No data.

CWE

CWE-79

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2018-01-31T00:00:00", "descriptions": [{"lang": "en", "value": "A vulnerability in the conferencing component of Mitel MiVoice Connect, versions R1707-PREM SP1 (21.84.5535.0) and earlier, and Mitel ST 14.2, versions GA27 (19.49.5200.0) and earlier, could allow an unauthenticated attacker to conduct a reflected cross-site scripting (XSS) attack due to insufficient validation for the launch_presenter.php page. A successful exploit could allow an attacker to execute arbitrary scripts."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-04-25T19:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://www.mitel.com/mitel-product-security-advisory-18-0003"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://www.mitel.com/sites/default/files/2018-Security-Bulletin-18-0003-001.pdf"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2018-9101", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A vulnerability in the conferencing component of Mitel MiVoice Connect, versions R1707-PREM SP1 (21.84.5535.0) and earlier, and Mitel ST 14.2, versions GA27 (19.49.5200.0) and earlier, could allow an unauthenticated attacker to conduct a reflected cross-site scripting (XSS) attack due to insufficient validation for the launch_presenter.php page. A successful exploit could allow an attacker to execute arbitrary scripts."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://www.mitel.com/mitel-product-security-advisory-18-0003", "refsource": "CONFIRM", "url": "https://www.mitel.com/mitel-product-security-advisory-18-0003"}, {"name": "https://www.mitel.com/sites/default/files/2018-Security-Bulletin-18-0003-001.pdf", "refsource": "CONFIRM", "url": "https://www.mitel.com/sites/default/files/2018-Security-Bulletin-18-0003-001.pdf"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2018-9101", "datePublished": "2018-04-25T20:00:00", "dateReserved": "2018-03-27T00:00:00", "dateUpdated": "2018-04-25T19:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:mitel:mivoice_connect:*:*:*:*:*:*:*:*", "matchCriteriaId": "96195CB8-FB3D-4877-BAAE-C4D3E9FA8ACF", "versionEndIncluding": "21.84.5535.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:mitel:st_14.2:*:*:*:*:*:*:*:*", "matchCriteriaId": "11D3C31F-DA38-48D6-ADEC-1E65C08F6157", "versionEndIncluding": "19.49.5200.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability in the conferencing component of Mitel MiVoice Connect, versions R1707-PREM SP1 (21.84.5535.0) and earlier, and Mitel ST 14.2, versions GA27 (19.49.5200.0) and earlier, could allow an unauthenticated attacker to conduct a reflected cross-site scripting (XSS) attack due to insufficient validation for the launch_presenter.php page. A successful exploit could allow an attacker to execute arbitrary scripts."}, {"lang": "es", "value": "Una vulnerabilidad en el componente conferencing de Mitel MiVoice Connect, en versiones R1707-PREM SP1 (21.84.5535.0) y anteriores y Mitel ST 14.2, en versiones GA27 (19.49.5200.0) y anteriores, podr\u00eda permitir que un atacante no autenticado lleve a cabo un ataque de Cross-Site Scripting (XSS) reflejado debido a la validaci\u00f3n insuficiente de la p\u00e1gina launch_presenter.php. Su explotaci\u00f3n con \u00e9xito podr\u00eda permitir que el atacante ejecute scripts arbitrarios."}], "id": "CVE-2018-9101", "lastModified": "2018-05-24T17:21:27.447", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2018-04-25T20:29:00.573", "references": [{"source": "cve@mitre.org", "tags": ["Broken Link", "Vendor Advisory"], "url": "https://www.mitel.com/mitel-product-security-advisory-18-0003"}, {"source": "cve@mitre.org", "tags": ["Broken Link", "Vendor Advisory"], "url": "https://www.mitel.com/sites/default/files/2018-Security-Bulletin-18-0003-001.pdf"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "nvd@nist.gov", "type": "Primary"}]}