Potential Privilege Escalation Vulnerability in Mitel MiCollab
CVE-2024-35287

6.7MEDIUM

Key Information:

Vendor: Mitel
Status: Micollab
Vendor: CVE Published:; 21 October 2024

What is CVE-2024-35287?

A vulnerability exists in the NuPoint Messenger component of Mitel MiCollab that allows an authenticated attacker with administrative privileges to exploit a privilege escalation flaw. This issue arises from the execution of a resource with unnecessary privileges within the component. When successfully exploited, attackers can execute arbitrary commands with elevated privileges, raising significant security concerns for affected systems. Users of Mitel MiCollab versions up to 9.8 SP1 are encouraged to review their security measures and the specific advisory for further insights.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://www.mitel.com/support/security-advisories/mitel-p...

CVSS V3.1

Score:

6.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Oct 21, 2024

JSON

Mitel

What is CVE-2024-35287?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.