CVE-2024-41710

Mitel SIP Phones Argument Injection Vulnerability

Severity Score

6.8

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

Yes

*KEV

Decision

Act

*SSVC

Descriptions

MITRE
CISA

A vulnerability in the Mitel 6800 Series, 6900 Series, and 6900w Series SIP Phones, including the 6970 Conference Unit, through R6.4.0.HF1 (R6.4.0.136) could allow an authenticated attacker with administrative privilege to conduct an argument injection attack, due to insufficient parameter sanitization during the boot process. A successful exploit could allow an attacker to execute arbitrary commands within the context of the system.

Mitel 6800 Series, 6900 Series, and 6900w Series SIP Phones, including the 6970 Conference Unit, contain an argument injection vulnerability due to insufficient parameter sanitization during the boot process. Successful exploitation may allow an attacker to execute arbitrary commands within the context of the system.

*Credits: N/A

Attack Vector

Adjacent

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Network

Attack Complexity

Low

Authentication

Single

Confidentiality

Partial

Integrity

Partial

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:Act

Exploitation

Active

Automatable

Tech. Impact

Total

* Organization's Worst-case Scenario

Timeline

2024-07-22 CVE Reserved
2024-08-12 CVE Published
2025-02-12 Exploited in Wild
2025-02-13 CVE Updated
2025-02-13 EPSS Updated
2025-03-05 KEV Due Date
---------- First Exploit

CWE

CWE-88: Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')

CAPEC

References (3)

URL	Tag	Source
https://www.mitel.com/support/security-advisories
https://github.com/kwburns/CVE/blob/main/Mitel/6.3.0.1020/README.md
https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-24-0019

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Mitel Search vendor "Mitel"		6863i Sip Firmware Search vendor "Mitel" for product "6863i Sip Firmware"				*		-		Affected
Mitel Search vendor "Mitel"		6865i Sip Firmware Search vendor "Mitel" for product "6865i Sip Firmware"				*		-		Affected
Mitel Search vendor "Mitel"		6867i Sip Firmware Search vendor "Mitel" for product "6867i Sip Firmware"				*		-		Affected
Mitel Search vendor "Mitel"		6869i Sip Firmware Search vendor "Mitel" for product "6869i Sip Firmware"				*		-		Affected
Mitel Search vendor "Mitel"		6873i Sip Firmware Search vendor "Mitel" for product "6873i Sip Firmware"				*		-		Affected
Mitel Search vendor "Mitel"		6905 Sip Firmware Search vendor "Mitel" for product "6905 Sip Firmware"				*		-		Affected
Mitel Search vendor "Mitel"		6910 Sip Firmware Search vendor "Mitel" for product "6910 Sip Firmware"				*		-		Affected
Mitel Search vendor "Mitel"		6915 Sip Firmware Search vendor "Mitel" for product "6915 Sip Firmware"				*		-		Affected
Mitel Search vendor "Mitel"		6920 Sip Firmware Search vendor "Mitel" for product "6920 Sip Firmware"				*		-		Affected
Mitel Search vendor "Mitel"		6920w Sip Firmware Search vendor "Mitel" for product "6920w Sip Firmware"				*		-		Affected
Mitel Search vendor "Mitel"		6930 Sip Firmware Search vendor "Mitel" for product "6930 Sip Firmware"				*		-		Affected
Mitel Search vendor "Mitel"		6930w Sip Firmware Search vendor "Mitel" for product "6930w Sip Firmware"				*		-		Affected
Mitel Search vendor "Mitel"		6940 Sip Firmware Search vendor "Mitel" for product "6940 Sip Firmware"				*		-		Affected
Mitel Search vendor "Mitel"		6940w Sip Firmware Search vendor "Mitel" for product "6940w Sip Firmware"				*		-		Affected
Mitel Search vendor "Mitel"		6970 Conference Firmware Search vendor "Mitel" for product "6970 Conference Firmware"				*		-		Affected