Path Traversal Vulnerability in Mitel OpenScape Accounting Management
CVE-2025-23092

7.2HIGH

Key Information:

Vendor: Mitel
Status: OpenScape Accounting Management
Vendor: CVE Published:; 23 June 2025

What is CVE-2025-23092?

The vulnerability in Mitel OpenScape Accounting Management allows authenticated attackers with administrative privileges to exploit insufficient user input sanitization, enabling them to perform path traversal attacks. Successful exploitation can result in the upload of arbitrary files and execution of unauthorized commands, potentially compromising the integrity and security of the system.

References

https://www.mitel.com/support/security-advisories

https://www.mitel.com/support/mitel-product-security-advi...

CVSS V3.1

Score:

7.2

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 23, 2025
Vulnerability Reserved
Jan 10, 2025

JSON