CVE-2017-16251

CVE-2017-16251

A vulnerability in the conferencing component of Mitel ST 14.2, release GA28 and earlier, could allow an authenticated user to upload a malicious script to the Personal Library by a crafted POST request. Successful exploit could allow an attacker to execute arbitrary code within the context of the application.

Source: CVE-2017-16251

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다