|
|
|||
| Rule General Information |
|---|
| Release Date: | 2022-06-24 | |
| Rule Name: | Mitel MiVoice Connect Remote Code Execution Vulnerability (CVE-2022-29499) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | The Service Appliance component in Mitel MiVoice Connect through 19.2 SP3 allows remote code execution because of incorrect data validation. The Service Appliances are SA 100, SA 400, and Virtual SA. | |
| Impact: | An attacker can execute arbitrary code via a successful exploit in the context of the vulnerable software. | |
| Affected OS: | Windows, Others | |
| Reference: | https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-22-0002 |
|
| Solutions |
|---|
| The vendors have released upgrade patches to fix vulnerabilities, please visit: https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-22-0002 |