CVE-2020-11798

Name of the Vulnerable Software and Affected Versions Mitel MiCollab AWV versions prior to 8.1.2.4 Mitel MiCollab AWV versions 9.x prior to 9.1.3

Description A Directory Traversal issue in the web conference component could allow an attacker to access arbitrary files from restricted directories of the server via a crafted URL, due to insufficient access validation. A successful exploit could allow an attacker to access sensitive information from the restricted directories.

Recommendations For versions prior to 8.1.2.4, update to version 8.1.2.4 or later. For versions 9.x prior to 9.1.3, update to version 9.1.3 or later.