Mitel Releases Security Update for Mitel MiCollab

Mitel has released a security update to address three vulnerabilities rated as High in MiCollab

Threat ID:: CC-4139
Threat Severity:: Information only
Published:: 29 July 2022 2:46 PM

Report a cyber attack: call 0300 303 5222 or email [email protected]

Summary

Mitel has released a security update to address three vulnerabilities rated as High in MiCollab

Affected platforms

The following platforms are known to be affected:

Versions: 9.5.0.101 and earlier

Mitel MiCollab

Threat details

Introduction

Mitel has released a security advisory to address three vulnerabilities rated as High in MiCollab. These vulnerabilities are related to an arbitrary file upload, server-side request forgery (SSRF), and improper authorization. An attacker could exploit these vulnerabilities to take control of an affected system.

Remediation advice

Affected organisations are encouraged to review the Mitel Product Security Advisory 22-0006 and apply any relevant updates.

Definitive source of threat updates

https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-22-0006

CVE Vulnerabilities

CVE-2022-36451

CVE-2022-36452

CVE-2022-36453

CVE-2022-36454

Last edited: 29 July 2022 2:46 pm