VDB

GCVE-VVD-NCSC-2024-468

GCVE-VVD-NCSC-2024-468
Advisory PublishedCVSS 7.5/10
Vulnetix · Advisory published December 9, 2024
Mitel heeft kwetsbaarheden verholpen in Mitel MiCollab (Specifiek voor de Unified Messaging en Conferencing componenten).
Download JSON Open in Console

Weaknesses (CWE)

CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')CWE-89Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')CWE-93Improper Neutralization of CRLF Sequences ('CRLF Injection')CWE-284Improper Access Control

Risk Scores

CVSS 3.1
7.5/10
High · CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected Products

VendorProductVersionsPlatforms
mitelmitel_micollab__9.8_sp2__9.8.2.12_
mitelmicollab

Aliases

CVE-2024-47223CVE-2024-47224CVE-2024-41713CVE-2024-47912CVE-2024-47189

Transitive aliases

GHSA-5w87-92qg-pw53BDU:2024-08842GHSA-4c8h-4mm2-mm5gBDU:2024-08843CNVD-2024-42930BDU:2024-09111GHSA-8v9w-9wj4-52p3CVE-2024-55550EUVD-2024-52803GHSA-62xf-29xj-84wmBDU:2024-08897BDU:2025-00510WID-SEC-W-2024-3141NCSC-2024-0468GHSA-hq69-8v63-55qvGHSA-75jr-3fww-8c5h

References

advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›