The Register on MSN15d
Mitel 0-day, 5-year-old Oracle RCE bugs under active exploit
CVEs added to CISA's catalog Cybercriminals are actively exploiting two vulnerabilities in Mitel MiCollab, including a zero-day flaw, alongside a critical remote code execution vulnerability in Oracle ...
CSOonline15d
Critical Mitel, Oracle flaws find active exploitation, CISA urges patching
CISA added the flaws to its known vulnerability catalog, recommending swift patching pursuant to Binding Operational ...
The Hacker News15d
CISA Flags Critical Flaws in Mitel and Oracle Systems Amid Active Exploitation
CISA lists critical flaws in Mitel MiCollab (CVE-2024-41713, CVE-2024-55550) and Oracle WebLogic (CVE-2020-2883).
Bleeping Computer16d
CISA warns of critical Oracle, Mitel flaws exploited in attacks
CISA has warned U.S. federal agencies to secure their systems against critical vulnerabilities in Oracle WebLogic Server and Mitel MiCollab systems that are actively exploited in attacks. The ...
TechRadar16d
CISA says Oracle and Mitel have critical security flaws being exploited
CISA addS three new bugs to KEV - two in Mitel’s MiCollab, and one in Oracle WebLogic Server The bugs allowed crooks to read sensitive files and take over vulnerable endpoints Federal agencies ...
US security agency warns of attacks on MiCollab and WebLogic Server
If attacks on Oracle WebLogic Server are successful, attackers can compromise systems. What this could look like in detail is not yet known. Specifically, versions 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0 ...
Yahoo15d
CISA says Oracle and Mitel have critical security flaws being exploited
Two of the three flaws are found in Mitel’s MiCollab unified communications platform. One is a critical path traversal vulnerability, tracked as CVE-2024-41713. "A successful exploit of this ...