The Join Meeting page of Mitel MiCollab Web Client before 9.2 FP2 could allow an attacker to access (view and modify) user data by executing arbitrary code due to insufficient input validation, aka Cross-Site Scripting (XSS).
References
Link | Resource |
---|---|
https://www.mitel.com/support/security-advisories | Vendor Advisory |
https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-21-0004 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-08-13T15:18:28
Updated: 2021-08-13T15:18:28
Reserved: 2021-02-19T00:00:00
Link: CVE-2021-27401
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-08-13T16:15:07.207
Modified: 2021-08-23T19:06:24.947
Link: CVE-2021-27401
JSON object: View
Redhat Information
No data.
CWE