Path Traversal Vulnerability in Mitel MiCollab Unified Messaging Component
CVE-2025-52913
9.8CRITICAL
What is CVE-2025-52913?
A vulnerability exists in the NuPoint Unified Messaging component of Mitel MiCollab that permits unauthenticated attackers to exploit a path traversal issue. This arises from inadequate input validation, potentially granting unauthorized access to sensitive data. If successfully exploited, attackers can not only view but also corrupt or delete users' data and system configurations, significantly affecting both data integrity and system functionality.
References
CVSS V3.1
Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved