Mitel‘s security advisory, denoted as 24-0003, highlighted an Improper Configuration vulnerability in the BluStar component of Mitel InAttend and Mitel CMG products, posing a critical risk. This vulnerability, if successfully exploited, could permit malicious actors to gain unauthorized access to sensitive information, manipulate system configurations, or execute arbitrary commands within the system. Mitel strongly urges customers utilizing impacted product versions to update to the latest releases promptly to enhance security and ensure protection against potential exploits.
Affected products include Mitel InAttend versions 2.6 SP4 to 2.7 and Mitel CMG versions 8.5 SP4 to 8.6 as detailed in Security Bulletin 24-0003-001, last updated on March 13, 2024. The severity of this vulnerability is classified as critical, requiring immediate attention and remediation. Mitel has responded promptly by issuing new releases for the affected products and advises customers to perform necessary updates to safeguard against possible security breaches. Users are encouraged to reach out to Mitel’s Product Support for additional information or assistance in implementing the recommended security measures to mitigate the identified vulnerability effectively.
