Lucene search
K

7 matches found

Nuclei
Nuclei
added 3 days ago88 views

Mitel MiCollab - Arbitary File Read

The Mitel Collab Arbitrary File Read vulnerability allows an unauthenticated attacker to read arbitrary files from the underlying file system on a Mitel Collab server. Exploiting this flaw involves sending specially crafted requests to the server, bypassing access controls and allowing the attack...

9.8CVSS6.8AI score0.98067EPSS
Exploits3References3
CISA
CISA
added 2025/01/07 12:0 p.m.76 views

CISA Adds Three Known Exploited Vulnerabilities to Catalog

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-41713link is external Mitel MiCollab Path Traversal Vulnerability CVE-2024-55550link is external Mitel MiCollab Path Traversal Vulnerability CVE-2020-2883lin...

9.8CVSS8.7AI score0.99698EPSS
In wildExploits32References11
CISA KEV Catalog
CISA KEV Catalog
added 2025/01/07 12:0 a.m.19 views

Mitel MiCollab Path Traversal Vulnerability

Mitel MiCollab contains a path traversal vulnerability that could allow an attacker to gain unauthorized and unauthenticated access. This vulnerability can be chained with CVE-2024-55550, which allows an unauthenticated, remote attacker to read arbitrary files on the server...

9.1CVSS7.7AI score0.98067EPSS
In wildExploits3
Circl
Circl
added 2024/12/10 8:49 p.m.20 views

CVE-2024-55550

creationtimestamp| type| source ---|---|--- 2024-12-10 20:49:25+00:00| seen| https://t.me/cvedetector/12538 2025-01-07 15:54:44+00:00| seen| https://infosec.exchange/users/screaminggoat/statuses/113787881639134332 2025-01-07 16:19:29+00:00| seen|...

4.4CVSS6.9AI score0.38104EPSS
Exploits0References24
NVD
NVD
added 2024/12/10 7:15 p.m.19 views

CVE-2024-55550

Mitel MiCollab through 9.8 SP2 could allow an authenticated attacker with administrative privilege to conduct a local file read, due to insufficient input sanitization. A successful exploit could allow the authenticated admin attacker to access resources that are constrained to the admin access...

4.4CVSS0.38104EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/12/10 12:0 a.m.15 views

CVE-2024-55550

Mitel MiCollab through 9.8 SP2 could allow an authenticated attacker with administrative privilege to conduct a local file read, due to insufficient input sanitization. A successful exploit could allow the authenticated admin attacker to access resources that are constrained to the admin access...

6.8AI score0.38104EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2024/12/10 12:0 a.m.4 views

VulnCheck KEV: CVE-2024-41713

Mitel MiCollab contains a path traversal vulnerability that could allow an attacker to gain unauthorized and unauthenticated access. This vulnerability can be chained with CVE-2024-55550, which allows an unauthenticated, remote attacker to read arbitrary files on the server...

9.1CVSS7.4AI score0.98067EPSS
Exploits3References1
Rows per page
Query Builder