Page 2 of 6 results (0.031 seconds)

CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0

A vulnerability in Mitel ST 14.2, release GA28 and earlier, could allow an attacker to use the API function to enumerate through user-ids which could be used to identify valid user ids and associated user names. Una vulnerabilidad in Mitel ST 14.2, release GA28 y anteriores, podría permitir que un atacante emplee la función API para enumerar a través de user-ids, que podría emplearse para identificar ID de usuario válidos y nombres de usuario asociados. • https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-18-0004 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •