CVE-2022-29499
- Reference to the description:
- Description:
- The Service Appliance component in Mitel MiVoice Connect through 19.2 SP3 allows remote code execution because of incorrect data validation. The Service Appliances are SA 100, SA 400, and Virtual SA.
- Last updated date:
- 05/05/2022
Reports
ACTIVELY EXPLOITED
- Type:
- exploitation
- Confidence:
- HIGH
- Date of publishing:
- 06/23/2022
- Reference url to background
https://www.crowdstrike.com/blog/novel-exploit-detected-in-mitel-voip-appliance/
- Type:
- exploitation
- Confidence:
- HIGH
- Date of publishing:
- 06/27/2022
- Reference url to background
https://www.cisa.gov/known-exploited-vulnerabilities-catalog