First published: Fri Aug 13 2021(Updated: )
The AWV component of Mitel MiCollab before 9.3 could allow an attacker to perform a Man-In-the-Middle attack due to improper TLS negotiation. A successful exploit could allow an attacker to view and modify data.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Mitel MiCollab, MiVoice Business Express | <9.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-32069 is a vulnerability in the AWV component of Mitel MiCollab before 9.3 that could allow an attacker to perform a Man-In-the-Middle attack due to improper TLS negotiation.
CVE-2021-32069 allows an attacker to view and modify data in Mitel MiCollab by exploiting the improper TLS negotiation vulnerability in the AWV component.
CVE-2021-32069 has a severity score of 4.8, which is considered medium.
To fix CVE-2021-32069, upgrade Mitel MiCollab to version 9.3 or later, which includes the proper TLS negotiation to prevent a Man-In-the-Middle attack.
You can find more information about CVE-2021-32069 on the Mitel website's support section, specifically the security advisories page.