Detections
Analytics

CVE-2025-52914

No Score

Description

An SQL vulnerability has been identified in the Suite Applications Services component of Mitel MiCollab, which if successfully exploited could allow an authenticated attacker to conduct an SQL Injection attack due to insufficient validation of user input. A successful exploit could allow an attacker to access user provisioning information and execute arbitrary SQL database commands with potential impacts on the confidentiality, integrity, and availability of the system. The vulnerability severity is rated as high. Mitel is recommending customers with affected product versions update to the latest release.

References

https://securityaffairs.com/180345/security/mitel-patches-critical-mivoice-mx-one-auth-bypass-flaw.html

https://www.bleepingcomputer.com/news/security/mitel-warns-of-critical-mivoice-mx-one-authentication-bypass-flaw/

https://thehackernews.com/2025/07/critical-mitel-flaw-lets-hackers-bypass.html

https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-misa-2025-0008

Details

Source: Mitre, NVD

Published: 2025-07-25