CVE-2023-39289

Name of the Vulnerable Software and Affected Versions Mitel MiVoice Connect versions through 9.6.2208.101

Description A vulnerability in the Connect Mobility Router component could allow an unauthenticated attacker to conduct an account enumeration attack due to improper configuration. A successful exploit could allow an attacker to access system information.

Recommendations For versions through 9.6.2208.101, update to a version later than 9.6.2208.101 to resolve the issue. As a temporary workaround, consider restricting access to the Connect Mobility Router component until a patch is available.