CVE-2024-35283

Name of the Vulnerable Software and Affected Versions Mitel MiContact Center Business versions through 10.0.0.4

Description The issue is related to a stored cross-site scripting (XSS) attack due to insufficient input validation in the Ignite component. This could allow an unauthenticated attacker to conduct such an attack.

Recommendations For versions through 10.0.0.4, update to a version that addresses the insufficient input validation issue in the Ignite component to prevent stored cross-site scripting (XSS) attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.