Lucene search

PRIOn knowledge basePRION:CVE-2022-36454

HistoryOct 25, 2022 - 6:15 p.m.

Authorization

2022-10-2518:15:00

PRIOn knowledge base

www.prio-n.com

micollab

client api

mitel

vulnerability

authenticated

modify

profile

parameters

impersonate

user

6.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

28.6%

JSON

A vulnerability in the MiCollab Client API of Mitel MiCollab through 9.5.0.101 could allow an authenticated attacker to modify their profile parameters due to improper authorization controls. A successful exploit could allow the authenticated attacker to impersonate another user’s name.

CPENameOperatorVersion
micollable9.5.0.101

CPE	Name	Operator	Version
	micollab	le	9.5.0.101

References

www.mitel.com/support/security-advisories

www.mitel.com/support/security-advisories/mitel-product-security-advisory-22-0006