CVE-2023-31460

Vulnerability

A command injection vulnerability exists in the Connect Mobility Router component of MiVoice Connect versions 9.6.2208.101 and earlier [2]. The flaw is triggered by insufficient restriction on URL parameters, enabling an authenticated attacker with internal network access to inject arbitrary system commands within the context of the router component [1].

Exploitation

An attacker must have valid authentication credentials and internal network access to the vulnerable system [2]. The attack is carried out by crafting a malicious HTTP request with specially manipulated URL parameters that bypass input validation, causing the server to execute attacker-supplied commands on the underlying operating system [1].

Impact

Successful exploitation allows the attacker to execute arbitrary commands with the privileges of the affected service, leading to full compromise of the Mobility Router's operating system, including potential data disclosure, modification, and denial of service [2].

Mitigation

Mitel has released updated software versions to address this vulnerability; customers should update to the latest version as indicated in the product Security Bulletin [2]. No workarounds are documented in the available references [1].