Argument Injection Vulnerability in Mitel SIP Phones
CVE-2024-41711
Currently unrated
Summary
A vulnerability in various Mitel SIP phone models arises from inadequate parameter sanitization, potentially allowing an unauthenticated attacker with physical access to perform an argument injection attack. This could enable the execution of arbitrary commands within the phone's system context, raising significant security concerns for users.
References
Timeline
Vulnerability published
Vulnerability Reserved