What security vulnerabilities were discovered in Mitel's MiCollab software?

Singapore-based cybersecurity firm watchTowr discovered two critical zero-day vulnerabilities in Mitel's MiCollab VoIP telephony software: CVE-2024-41713 (path traversal vulnerability) and CVE-2024-35286 (SQL injection), both with CVSS scores of 9.8. An additional arbitrary file read vulnerability remains unpatched.

What are the details of CVE-2024-41713?

CVE-2024-41713 is a path traversal vulnerability in the NuPoint Unified Messaging (NPM) component that allows unauthenticated remote attackers to gain unauthorized access. It affects versions 9.7 and above, and was patched in MiCollab 9.8 SP2 (version 9.8.2.12) released on October 9.

What are the details of CVE-2024-35286?

CVE-2024-35286 is an SQL Injection vulnerability in the NuPoint Unified Messaging (NPM) component, affecting versions 9.8.0.33 and earlier. It has a CVSS score of 9.8, indicating critical severity.

How many systems are potentially affected?

Over 16,000 internet-exposed instances of MiCollab VoIP telephony software are potentially at risk from these vulnerabilities.

What actions are recommended for users?

Users are advised to update their systems as soon as possible. While patches are available for CVE-2024-41713 and CVE-2024-35286, a patch for the arbitrary file read vulnerability is expected in the first week of December 2024.

Advisory

Critical vulnerability reported in Mitel MiCollab VoIP software

published: Dec. 5, 2024

Take action: If you are running Mitel's MiCollab VoIP telephony software, this is a set of must-patches. The detailed research of WatchTowr will quickly be turned into an exploit.

Learn More

A critical security vulnerability has been discovered in Mitel's MiCollab VoIP telephony software, with researchers warning of significant risks to over 16,000 internet-exposed instances.

Two zero-day vulnerabilities have been identified by Singapore-based cybersecurity firm watchTowr:

CVE-2024-41713 (CVSS score 9.8) - Path traversal vulnerability in NuPoint Unified Messaging (NPM) component. Allows unauthenticated remote attackers to gain unauthorized access. Affected versions: 9.7 and above, patched in MiCollab 9.8 SP2 (version 9.8.2.12) released on October 9
CVE-2024-35286 (CVSS score 9.8) - SQL Injection in NuPoint Unified Messaging (NPM) component. Affected Versions: 9.8.0.33 and earlier.
Arbitrary file read vulnerability, currently unpatched (patch expected first week of December 2024)

Users are advised to update their systems as soon as possible.

Critical vulnerability reported in Mitel MiCollab VoIP software

Read More
Citrix patches critical vulnerabilities that let Attackers Execute …
Cisco Patches Actively Exploited Vulnerabilities in Catalyst SD-WAN …
Zabbix network monitoring tool vulnerable to critical SQL …
Critical Fortinet FortiClient EMS SQL Injection Vulnerability Exploited …
Rapid7 Velociraptor vulnerability actively exploited in ransomware campaigns