Multiple Vulnerabilities in Mitel Products Allowing Remote Code Execution and Data Compromise

72% confidence

Description

Multiple vulnerabilities have been discovered in Mitel products including MiCollab and MiVoice Business Solution Virtual Instance (MiVB SVI). These vulnerabilities allow remote code execution, data confidentiality and integrity breaches, server-side request forgery (SSRF), and SQL injection (SQLi).

Affected Products

Vendor	Product	Versions
mitel networks	micollab, mivoice business solution virtual instance (mivb svi)	MiCollab versions 10.2.x prior to 10.2 SP1 FP2 (10.2.1.205), MiCollab versions 9.8.x prior to 9.8 SP3 FP2 (9.8.3.203), MiVoice Business Solution Virtual Instance (MiVB SVI) version 1.0 without latest security patches, MiVoice Business Solution Virtual Instance (MiVB SVI) versions 2.x prior to 2.1.0.9-4

Related News (1 articles)

Tier B

CERT-FR15h ago

Multiples vulnérabilités dans les produits Mitel (18 juin 2026)

→ No new info (linked only)

CISA KEV❌ No

Actively exploited❌ No

Patch available

10.2 SP1 FP2 (10.2.1.205) for MiCollab 10.2.x9.8 SP3 FP2 (9.8.3.203) for MiCollab 9.8.x2.1.0.9-4 for MiVB SVI 2.xlatest patches for MiVB SVI 1.0

CWECWE-89, CWE-918, CWE-20

PublishedJun 18, 2026

Last enriched2h ago

Multiple Vulnerabilities in Mitel Products Allowing Remote Code Execution and Data Compromise

Description

Affected Products

Related News (1 articles)

Community Vote

Pin to Dashboard

Verification

Vulnerability Timeline