{
  "id": "CVE-2023-39285",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2023-09-14T19:16:50.847",
  "lastModified": "2023-09-15T00:31:20.767",
  "vulnStatus": "Awaiting Analysis",
  "descriptions": [
    {
      "lang": "en",
      "value": "A vulnerability in the Edge Gateway component of Mitel MiVoice Connect through 19.3 SP3 (22.24.5800.0) could allow an unauthenticated attacker to perform a Cross Site Request Forgery (CSRF) attack due to insufficient request validation. A successful exploit could allow an attacker to provide a modified URL, potentially enabling them to modify system configuration settings."
    }
  ],
  "metrics": {},
  "references": [
    {
      "url": "https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-23-0014",
      "source": "cve@mitre.org"
    }
  ]
}