CVE-2024-41713: Mitel MiCollab Path Traversal Vulnerability. Mitel MiCollab
Mitel MiCollab Path Traversal Vulnerability. Mitel MiCollab contains a path traversal vulnerability that could allow an attacker to gain unauthorized and unauthenticated access. This vulnerability can be chained with CVE-2024-55550, which allows an unauthenticated, remote attacker to read arbitrary files on the server.
- CISA KEV-listed (remediation due 2025-01-28)
- used in ransomware campaigns
- EPSS 93.9% (99.9% percentile)