FKIE_CVE-2024-41710

Vulnerability from fkie_nvd - Published: 2024-08-12 19:15 - Updated: 2025-11-05 19:11
Severity ?
7.2 (High) - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
6.8 (Medium) - CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Summary
A vulnerability in the Mitel 6800 Series, 6900 Series, and 6900w Series SIP Phones, including the 6970 Conference Unit, through R6.4.0.HF1 (R6.4.0.136) could allow an authenticated attacker with administrative privilege to conduct an argument injection attack, due to insufficient parameter sanitization during the boot process. A successful exploit could allow an attacker to execute arbitrary commands within the context of the system.
References
cve@mitre.orghttps://github.com/kwburns/CVE/blob/main/Mitel/6.3.0.1020/README.mdExploit, Third Party Advisory
cve@mitre.orghttps://www.mitel.com/support/security-advisoriesVendor Advisory
cve@mitre.orghttps://www.mitel.com/support/security-advisories/mitel-product-security-advisory-24-0019Vendor Advisory
134c704f-9b21-4f2e-91b3-4a467353bcc0https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-41710US Government Resource
Impacted products
Vendor Product Version
mitel 6970_firmware *
mitel 6970 -
mitel 6940w_sip_firmware *
mitel 6940w_sip -
mitel 6930w_sip_firmware *
mitel 6930w_sip -
mitel 6920w_sip_firmware *
mitel 6920w_sip -
mitel 6920_sip_firmware *
mitel 6920_sip -
mitel 6915_sip_firmware *
mitel 6915_sip -
mitel 6910_sip_firmware *
mitel 6910_sip -
mitel 6905_sip_firmware *
mitel 6905_sip -
mitel 6940_sip_firmware *
mitel 6940_sip -
mitel 6930_sip_firmware *
mitel 6930_sip -
mitel 6873i_sip_firmware *
mitel 6873i_sip -
mitel 6869i_sip_firmware *
mitel 6869i_sip -
mitel 6867i_sip_firmware *
mitel 6867i_sip -
mitel 6865i_sip_firmware *
mitel 6865i_sip -
mitel 6863i_sip_firmware *
mitel 6863i_sip -
To clipboard 

{
  "cisaActionDue": "2025-03-05",
  "cisaExploitAdd": "2025-02-12",
  "cisaRequiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.",
  "cisaVulnerabilityName": "Mitel SIP Phones Argument Injection Vulnerability",
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:mitel:6970_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "D391B6ED-2FEF-43A3-8ECE-F42B79E1F9CD",
              "versionEndIncluding": "6.4.0.136",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mitel:6970:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "651C4A02-AE83-4D6E-B49F-D756DF8032F3",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:mitel:6940w_sip_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "1BD5BE48-120F-4A09-96C8-1095E04C8D69",
              "versionEndIncluding": "6.4.0.136",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mitel:6940w_sip:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E0BB4B3A-65F9-4726-938D-71B686BC13E1",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:mitel:6930w_sip_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "D1E36148-4C07-46E4-B99C-FD3D8EBF48F8",
              "versionEndIncluding": "6.4.0.136",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mitel:6930w_sip:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C5230BCB-800F-434D-9AAB-A35A7F87D356",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:mitel:6920w_sip_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "6DE5CF0D-7BF3-468E-9809-6A1417C6989F",
              "versionEndIncluding": "6.4.0.136",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mitel:6920w_sip:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "663416FA-7F4F-45CA-A28F-3FF20214F20B",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:mitel:6920_sip_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "E1D8483A-A448-416F-9918-B1D995616553",
              "versionEndIncluding": "6.4.0.136",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mitel:6920_sip:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F8084E6D-1382-4785-9D01-0111A04B233A",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:mitel:6915_sip_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "A04266DF-3E78-47DB-BAA5-E79FCB38974B",
              "versionEndIncluding": "6.4.0.136",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mitel:6915_sip:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E3F279F8-83D8-4EEC-AA99-5EED398653E8",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:mitel:6910_sip_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "91BCABB3-BA8D-41B8-953B-A33C7BFB332C",
              "versionEndIncluding": "6.4.0.136",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mitel:6910_sip:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "412A5856-40B0-4633-B0F6-D87D3DB85BE5",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:mitel:6905_sip_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "7B379EEB-2927-4A36-83A1-E7B4CB88F3E4",
              "versionEndIncluding": "6.4.0.136",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mitel:6905_sip:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "97CB43CD-3B53-4839-9AE4-67024A276305",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:mitel:6940_sip_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "1A3ED2A5-977E-4743-838F-62EE2A7A6837",
              "versionEndIncluding": "6.4.0.136",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mitel:6940_sip:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "05422EAF-9528-48CE-972C-9DF111F91570",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:mitel:6930_sip_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "4ECFE164-B4A2-44DC-B603-EF7C4E6F68F4",
              "versionEndIncluding": "6.4.0.136",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mitel:6930_sip:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1837336E-7A1D-414C-B888-56350AF6C32A",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:mitel:6873i_sip_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "66B0069E-B089-46B0-B1D7-C560A15FC26E",
              "versionEndIncluding": "6.4.0.136",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mitel:6873i_sip:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3C298A98-C6CE-4AEB-AD9F-FFCFA1E865F6",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:mitel:6869i_sip_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "4415660E-385F-43DC-9F37-4C06AC7F052F",
              "versionEndIncluding": "6.4.0.136",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mitel:6869i_sip:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "654554ED-253C-4928-92D0-92EADF5F4768",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:mitel:6867i_sip_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "645135A3-362E-4DBB-805C-49A6B21EB4C9",
              "versionEndIncluding": "6.4.0.136",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mitel:6867i_sip:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "4942E820-8103-4763-8715-F1301F233B05",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:mitel:6865i_sip_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "91CC349C-AFB9-418F-9425-0038E91EF7BC",
              "versionEndIncluding": "6.4.0.136",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mitel:6865i_sip:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0AAFF6ED-44F6-4D3B-99EA-0F8FE58EC34B",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:mitel:6863i_sip_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "10E7483A-BFB0-4F2A-B5DF-43AD0A308F7B",
              "versionEndIncluding": "6.4.0.136",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mitel:6863i_sip:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "5D7C6275-6DA1-4768-A331-5290E8CB64D0",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A vulnerability in the Mitel 6800 Series, 6900 Series, and 6900w Series SIP Phones, including the 6970 Conference Unit, through R6.4.0.HF1 (R6.4.0.136) could allow an authenticated attacker with administrative privilege to conduct an argument injection attack, due to insufficient parameter sanitization during the boot process. A successful exploit could allow an attacker to execute arbitrary commands within the context of the system."
    },
    {
      "lang": "es",
      "value": "Una vulnerabilidad en los tel\u00e9fonos SIP Mitel de las series 6800, 6900 y 6900w, incluida la unidad de conferencia 6970, a trav\u00e9s de R6.4.0.HF1 (R6.4.0.136) podr\u00eda permitir que un atacante autenticado con privilegios administrativos lleve a cabo un ataque de inyecci\u00f3n de argumentos, debido a una desinfecci\u00f3n insuficiente de los par\u00e1metros durante el proceso de arranque. Un exploit exitoso podr\u00eda permitir a un atacante ejecutar comandos arbitrarios dentro del contexto del sistema."
    }
  ],
  "id": "CVE-2024-41710",
  "lastModified": "2025-11-05T19:11:12.897",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 7.2,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "HIGH",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.2,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "ADJACENT_NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 6.8,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "HIGH",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 0.9,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2024-08-12T19:15:16.850",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit",
        "Third Party Advisory"
      ],
      "url": "https://github.com/kwburns/CVE/blob/main/Mitel/6.3.0.1020/README.md"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://www.mitel.com/support/security-advisories"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-24-0019"
    },
    {
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "tags": [
        "US Government Resource"
      ],
      "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-41710"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-88"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-88"
        }
      ],
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "type": "Secondary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.