Mitel Product Security Update Advisory (CVE-2024-41713)

Dec 13 2024

Overview

An update has been released to address vulnerabilities in Mitel Products. Users of the affected versions are advised to update to the latest version.

Affected Products

CVE-2024-41713

MiCollab versions: ~ 9.8 SP1 FP2 (9.8.1.201) (inclusive)

Resolved Vulnerabilities

Vulnerability in the NuPoint Unified Messaging (NPM) component of Mitel MiCollab due to lack of input validation, allowing a path traversal attack without authentication (CVE-2024-41713)

Vulnerability Patches

Vulnerability Patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2024-41713

MiCollab version: 9.8 SP2 (9.8.2.12) or later version

Referenced Sites

[1] CVE-2024-41713 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-41713

[2] Mitel Product Security Advisory MISA-2024-0029 MiCollab Path Traversal Vulnerability

https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-misa-2024-0029

Mitel Product Security Update Advisory (CVE-2024-41713)

Augular Expressions Security Update Advisory (CVE-2024-54152)

Openwrt ASU Security Update Advisory (CVE-2024-54143)

Tags:

Augular Expressions Security Update Advisory (CVE-2024-54152)

Openwrt ASU Security Update Advisory (CVE-2024-54143)