PT-2024-22586 · Mitel · Mitel Cmg+1
Published
2024-03-14
·
Updated
2024-08-01
·
CVE-2024-28815
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Mitel InAttend versions 2.6 SP4 through 2.7
Mitel CMG versions 8.5 SP4 through 8.6
Description
A vulnerability in the BluStar component could allow access to sensitive information, changes to the system configuration, or execution of arbitrary commands within the context of the system.
Recommendations
For Mitel InAttend versions 2.6 SP4 through 2.7, update to a version that includes the security patch for the BluStar component vulnerability.
For Mitel CMG versions 8.5 SP4 through 8.6, update to a version that includes the security patch for the BluStar component vulnerability.
As a temporary workaround, consider restricting access to the BluStar component until a patch is available.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Mitel Cmg
Mitel Inattend