The AWV component of Mitel MiCollab before 9.2 could allow an attacker to gain access to a web conference due to insufficient access control for conference codes.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25610
Reference (s):
- https://www.mitel.com/support/security-advisories