Vulnerability Description
A vulnerability in the legacy chat component of Mitel MiContact Center Business through 10.1.0.4 could allow an unauthenticated attacker to conduct an unauthorized access attack due to inadequate access control checks. A successful exploit requires user interaction and could allow an attacker to access sensitive information and send unauthorized messages during an active chat session.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mitel | Micontact Center Business | <= 10.1.0.4 |
Related Weaknesses (CWE)
References
- https://www.mitel.com/-/media/mitel/file/pdf/support/security-advisories/securitBroken Link
- https://www.mitel.com/support/security-advisoriesVendor Advisory
- https://www.mitel.com/support/security-advisories/mitel-product-security-advisorVendor Advisory
FAQ
What is CVE-2024-42514?
CVE-2024-42514 is a vulnerability with a CVSS score of 8.1 (HIGH). A vulnerability in the legacy chat component of Mitel MiContact Center Business through 10.1.0.4 could allow an unauthenticated attacker to conduct an unauthorized access attack due to inadequate acce...
How severe is CVE-2024-42514?
CVE-2024-42514 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-42514?
Check the references section above for vendor advisories and patch information. Affected products include: Mitel Micontact Center Business.