CVE-2018-19275
CRITICALMitel InAttend <2.5 SP3 & CMG <8.4 SP3 - Privilege Escalation
Title source: llmDescription
The BluStar component in Mitel InAttend before 2.5 SP3 and CMG before 8.4 SP3 Suite Servers has a default password, which could allow remote attackers to gain unauthorized access and execute arbitrary scripts with potential impacts to the confidentiality, integrity and availability of the system.
Scores
CVSS v3
9.8
EPSS
0.0310
EPSS Percentile
86.9%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-1188
Status
published
Products (4)
mitel/cmg_suite
8.4 (2 CPE variants)
mitel/cmg_suite
< 8.4
mitel/inattend
2.5 (3 CPE variants)
mitel/inattend
< 2.5
Published
Apr 02, 2019
Tracked Since
Feb 18, 2026