CVE-2020-11797
First published: Wed Aug 26 2020(Updated: )
An Authentication Bypass vulnerability in the Published Area of the web conferencing component of Mitel MiCollab AWV before 8.1.2.4 and 9.x before 9.1.3 could allow an unauthenticated attacker to gain access to unauthorized information due to insufficient access validation. A successful exploit could allow an attacker to access sensitive shared files.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mitel MiCollab Audio, Web & Video Conferencing | <8.1.2.4 | |
| Mitel MiCollab Audio, Web & Video Conferencing | >=9.0<9.1.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2020-11797?
CVE-2020-11797 has a high severity due to the potential for unauthorized access to sensitive information.
How do I fix CVE-2020-11797?
To fix CVE-2020-11797, upgrade Mitel MiCollab AWV to version 8.1.2.4 or 9.1.3 or later.
Who is affected by CVE-2020-11797?
CVE-2020-11797 affects users of Mitel MiCollab Audio, Web, and Video Conferencing versions prior to 8.1.2.4 and between 9.0 and 9.1.3.
Can CVE-2020-11797 lead to data breaches?
Yes, CVE-2020-11797 can lead to data breaches by allowing unauthenticated attackers access to unauthorized information.
What type of vulnerability is CVE-2020-11797?
CVE-2020-11797 is categorized as an Authentication Bypass vulnerability due to insufficient access validation.
- agent/type
- agent/references
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/mitel
- canonical/mitel micollab audio, web & video conferencing
- version/mitel micollab audio, web & video conferencing/9.0