Cybersecurity Alerts

Actively Exploited Vulnerabilities

← Back to Cybersecurity Alerts

CVE-2022-40765

Mitel | MiVoice ConnectAdded 2023-02-21Remediation Deadline 2023-03-14Active Ransomware Campaign

Mitel MiVoice Connect Command Injection Vulnerability

The Mitel Edge Gateway component of MiVoice Connect allows an authenticated attacker with internal network access to execute commands within the context of the system.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-77

References