Security Advisory – High-Risk Reflected XSS in Mitel MiContact Center Business

Mitel’s security advisory on February 29, 2024, reports a high-risk reflected cross-site scripting (XSS) vulnerability in the legacy chat component of MiContact Center Business, versions 10.0.0.4 and earlier. This vulnerability poses a significant risk as it could enable malicious actors to obtain sensitive information and gain unauthorized access. Mitel strongly advises affected customers to update their software to the latest versions and apply the necessary hotfix.

For more details, visit the Mitel advisory page.