CVE-2022-26143 - MiCollab, MiVoice Business Express Access Control Vulnerability

CVE ID:CVE-2022-26143

Project:Mitel

Product:MiCollab, MiVoice Business Express

Date Added:2022-03-25Due Date:2022-04-15

Vulnerability Name

MiCollab, MiVoice Business Express Access Control Vulnerability

Description

A vulnerability has been identified in MiCollab and MiVoice Business Express that may allow a malicious actor to gain unauthorized access to sensitive information and services, cause performance degradations or a denial of service condition on the affected system.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply updates per vendor instructions.

Additional Notes

https://nvd.nist.gov/vuln/detail/CVE-2022-26143