CVE-2018-5782

high-risk
Published 2018-03-14

A vulnerability in the conferencing component of Mitel Connect ONSITE, versions R1711-PREM and earlier, and Mitel ST 14.2, release GA28 and earlier, could allow an unauthenticated attacker to inject PHP code using specially crafted requests to the vsethost.php page. Successful exploit could allow an attacker to execute arbitrary PHP code within the context of the application.

Do I need to act?

!
32.3% chance of exploitation in next 30 days
EPSS score — higher than 68% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
!
1 public exploit available
46174
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
9
CVSS 9.8/10 Critical
NETWORK / LOW complexity

Affected Products (2)

Connect Onsite
St14.2

Affected Vendors

Mitel

References (6)

Product https://github.com/twosevenzero/shoretel-mitel-rce
Exploit https://www.exploit-db.com/exploits/46174/
Vendor Advisory https://www.mitel.com/support/security-advisories/mitel-product-security-advisor...
Product https://github.com/twosevenzero/shoretel-mitel-rce
Exploit https://www.exploit-db.com/exploits/46174/
Vendor Advisory https://www.mitel.com/support/security-advisories/mitel-product-security-advisor...
55
/ 100
high-risk
Severity 32/34 · Critical
Exploitability 16/34 · Moderate
Exposure 7/34 · Low