CVE-2020-12456 - OpenCVE

A remote code execution vulnerability in Mitel MiVoice Connect Client before 214.100.1223.0 could allow an attacker to execute arbitrary code in the chat notification window, due to improper rendering of chat messages. A successful exploit could allow an attacker to steal session cookies, perform directory traversal, and execute arbitrary scripts in the context of the Connect client.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:S/C:P/I:P/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Mitel	Mivoice Connect Client

Configuration 1 [-]

cpe:2.3:a:mitel:mivoice_connect_client:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://www.mitel.com/support/security-advisories
https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-20-0006

History

Mon, 03 Nov 2025 17:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Mitel mivoice Connect Client
CPEs	cpe:2.3:a:mitel:mivoice_connect::::::::	cpe:2.3:a:mitel:mivoice_connect_client::::::::
Vendors & Products	Mitel mivoice Connect	Mitel mivoice Connect Client

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2020-08-26T18:07:29

Updated: 2024-08-04T11:56:52.052Z

Reserved: 2020-04-29T00:00:00

Link: CVE-2020-12456

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2020-08-26T19:15:14.237

Modified: 2025-11-03T17:20:51.743

Link: CVE-2020-12456

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2020-06-01T00:00:00", "descriptions": [{"lang": "en", "value": "A remote code execution vulnerability in Mitel MiVoice Connect Client before 214.100.1223.0 could allow an attacker to execute arbitrary code in the chat notification window, due to improper rendering of chat messages. A successful exploit could allow an attacker to steal session cookies, perform directory traversal, and execute arbitrary scripts in the context of the Connect client."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2020-08-26T18:07:29", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://www.mitel.com/support/security-advisories"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-20-0006"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "[email protected]", "ID": "CVE-2020-12456", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A remote code execution vulnerability in Mitel MiVoice Connect Client before 214.100.1223.0 could allow an attacker to execute arbitrary code in the chat notification window, due to improper rendering of chat messages. A successful exploit could allow an attacker to steal session cookies, perform directory traversal, and execute arbitrary scripts in the context of the Connect client."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://www.mitel.com/support/security-advisories", "refsource": "MISC", "url": "https://www.mitel.com/support/security-advisories"}, {"name": "https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-20-0006", "refsource": "CONFIRM", "url": "https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-20-0006"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T11:56:52.052Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://www.mitel.com/support/security-advisories"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-20-0006"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2020-12456", "datePublished": "2020-08-26T18:07:29", "dateReserved": "2020-04-29T00:00:00", "dateUpdated": "2024-08-04T11:56:52.052Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:mitel:mivoice_connect_client:*:*:*:*:*:*:*:*", "matchCriteriaId": "83575D08-AD76-4FBA-B8D9-92AF1A100442", "versionEndExcluding": "214.100.1223.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A remote code execution vulnerability in Mitel MiVoice Connect Client before 214.100.1223.0 could allow an attacker to execute arbitrary code in the chat notification window, due to improper rendering of chat messages. A successful exploit could allow an attacker to steal session cookies, perform directory traversal, and execute arbitrary scripts in the context of the Connect client."}, {"lang": "es", "value": "Una vulnerabilidad de ejecuci\u00f3n de c\u00f3digo remota en Mitel MiVoice Connect Client versiones anteriores a 214.100.1223.0, podr\u00eda permitir a un atacante ejecutar c\u00f3digo arbitrario en la ventana de notificaci\u00f3n de chat, debido a una representaci\u00f3n inapropiada de los mensajes de chat. Un explotaci\u00f3n con \u00e9xito podr\u00eda permitir a un atacante robar cookies de sesi\u00f3n, llevar a cabo un salto de directorio y ejecutar scripts arbitrarios en el contexto del cliente Connect"}], "id": "CVE-2020-12456", "lastModified": "2025-11-03T17:20:51.743", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "[email protected]", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "[email protected]", "type": "Primary"}]}, "published": "2020-08-26T19:15:14.237", "references": [{"source": "[email protected]", "tags": ["Vendor Advisory"], "url": "https://www.mitel.com/support/security-advisories"}, {"source": "[email protected]", "tags": ["Vendor Advisory"], "url": "https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-20-0006"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://www.mitel.com/support/security-advisories"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-20-0006"}], "sourceIdentifier": "[email protected]", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "[email protected]", "type": "Primary"}]}