🔴 CVE-2024-41713

Critical unauthenticated path traversal vulnerability in Mitel MiCollab NuPoint Unified Messaging component allows remote attackers to view, corrupt, or delete user data and system configurations. This vulnerability is actively exploited and listed in CISA KEV.

← Back to Overview
HIGH_RISK
Risk Level
9.1
CVSS Score
NETWORK
Attack Vector
Initial Access
ATT&CK Tactic
T1190 — Exploit Public-Facing Application
ATT&CK Technique
HIGH
Deployment Risk
Yes (+513d)
Ransomware

📋 Vulnerability Details

Data Source: CIRCL

Confidence: HIGH

Exploitation Method: DIRECT_NETWORK

CVE Published: 2024-10-21

Added to CISA KEV: 2025-01-07 78 DAYS BETWEEN CVE AND KEV

🎯 Recommendations:

🔍 Web Intelligence (Kagi · 2026-06-04)

CVE-2024-41713 is a critical path traversal vulnerability affecting the NuPoint Unified Messaging (NPM) component of Mitel MiCollab [1].

Exploitation and Threat Actor Activity
  • Active Exploitation: The vulnerability has been actively exploited in the wild. Following the publication of proof-of-concept (PoC) technical details on December 5, 2024, reports emerged of exploitation activity, specifically involving the chaining of CVE-2024-41713 with another vulnerability, CVE-2024-55550 [2].
  • CISA Status: Due to this active exploitation, CVE-2024-41713 was added to the Cybersecurity and Infrastructure Security Agency (CISA) list of Known Exploited Vulnerabilities (KEV) on January 7, 2025 [3].
  • PoC Availability: Public proof-of-concept technical details were made available in early December 2024, which directly preceded the observed surge in attacker interest and exploitation attempts [2] [5].
Attack Method and Requirements
  • Exploitation Type: The vulnerability is a path traversal attack caused by insufficient input validation [1].
  • Authentication: It can be exploited by an unauthenticated attacker [1].
  • Access: The attack is network-based.
Impact
  • Access/Impact: Successful exploitation allows an attacker to gain unauthorized access to the system. This enables them to view, corrupt, or delete user data and system configurations [1].
  • Severity: It carries a CVSSv3 score of 9.8, reflecting its critical severity [2].
Affected Versions and Mitigation
  • Affected Versions: The vulnerability affects Mitel MiCollab versions through 9.8 SP1 FP2 (9.8.1.201) [1].
  • Patch Status: Mitel released a security advisory (MISA-2024-0029) and urged customers to update to MiCollab 9.8 SP2 (9.8.2.12) or later to address the vulnerability [4] [6].

Sources

  1. NVD - CVE-2024-41713

    CVE-2024-41713 Detail. Description. A vulnerability in the NuPoint Unified Messaging (NPM) component of Mitel MiCollab through 9.8 SP1 FP2 (9.8.1.201) could allow an unauthenticated attacker to conduct a path traversal attack, due to insufficient input validation. A successful exploit could allow un…

  2. Exploitation of critical path traversal vulnerability (CVE-2024-41713 ...

    Introduction After proof-of-concept technical details were published on 5 December 2024 for CVE-2024-41713 and CVE-2024-55550, exploitation activity chaining these two Mitel MiCollab vulnerabilities has been reported. MiCollab is a cloud-based platform that integrates chat, voice, video, and SMS mes…

  3. PoC Exploit Available for Mitel MiCollab VoIP Platform [CVE-2024 ...

    **Update** (January 8, 2025): CVE-2024-41713 and CVE-2024-55550 were added to CISA's list of known exploited vulnerabilities on January 7, 2025. ... CVE-2024-55550 was a zero-day vulnerability discovered when watchTowr published their blog, but has since been assigned a CVE ID and addressed by the v…

  4. Mitel Releases Security Advisories for MiCollab - NHS England Digital

    After proof-of-concept technical details were published on 5 December 2024 for CVE-2024-41713 and CVE-2024-55550, exploitation activity chaining these two Mitel MiCollab vulnerabilities was reported. NHS England's National CSOC issued high severity Cyber Alert CC-4588 in response. Affected organisat…

  5. From PoC to Attacker Interest in Hours: Real-Time Insights into Mitel ...

    October 2024: CVE-2024-41713, an authentication bypass vulnerability, is disclosed. ... CVE-2024-35286: Mitel released a patch in May 2024.

  6. Where There's Smoke, There's Fire - Mitel MiCollab CVE-2024 ...

    Mitel termed our new prize CVE-2024-41713, and promptly released an advisory to update to the fixed version 9.8.2.12 (or follow specific ... Mitel termed our new prize CVE-2024-41713, and promptly released an advisory to update to the fixed version 9.8.2.12 (or follow specific instructions to mitiga…

Generated by PatchNow Intelligence System

Analysis based on CIRCL.LU data, Claude AI assessment, and MITRE ATT&CK framework

📄 Download JSON Data | 📡 RSS Feed