Today's cybersecurity headlines are brought to you by ThreatPerspective
Ethical Hacking News

CISA Warns of Critical Oracle and Mitel Flaws Exploited in Attacks




The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning to U.S. federal agencies regarding critical vulnerabilities in two major software systems: Oracle WebLogic Server and Mitel MiCollab unified communications platform. These vulnerabilities have been found to be actively exploited by malicious actors, posing significant risks to the federal enterprise. CISA advises organizations to prioritize patching and mitigating these vulnerabilities to block ongoing attacks and ensure the security of their systems.

  • Oracle WebLogic Server and Mitel MiCollab unified communications platform have been identified as vulnerable to critical exploits.
  • The vulnerabilities, CVE-2024-41713 and CVE-2024-55550, pose significant risks to federal agencies and require immediate attention.
  • CISA has added both vulnerabilities to its Known Exploited Vulnerabilities catalog to alert organizations to patch as soon as possible.
  • Organizations are advised to prioritize mitigating these security flaws to block ongoing attacks and ensure system security.



    • The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning to U.S. federal agencies regarding critical vulnerabilities in two major software systems: Oracle WebLogic Server and Mitel MiCollab unified communications platform. These vulnerabilities, tracked as CVE-2024-41713 and CVE-2024-55550 respectively, have been found to be actively exploited by malicious actors, posing significant risks to the federal enterprise.

    According to CISA, the first vulnerability, CVE-2024-41713, is a critical path traversal vulnerability found in the NuPoint Unified Messaging (NPM) component of Mitel's MiCollab platform. This vulnerability allows attackers to perform unauthorized administrative actions and access user and network information without authentication. The impact of this vulnerability is significant, as it enables an attacker to gain unauthenticated access to provisioning information, including non-sensitive user and network information, and perform unauthorized administrative actions on the MiCollab server.

    The second vulnerability, CVE-2024-55550, is a Mitel MiCollab path traversal vulnerability that enables authenticated attackers with admin privileges to read arbitrary files on vulnerable servers. However, it's worth noting that successful exploitation of this vulnerability does not allow privilege escalation, and accessible files do not contain sensitive system information. Nevertheless, the presence of this vulnerability in the Known Exploited Vulnerabilities catalog highlights the need for organizations to prioritize mitigating these security flaws to block ongoing attacks.

    CISA has added both vulnerabilities to its Known Exploited Vulnerabilities catalog, which focuses on alerting U.S. federal agencies regarding vulnerabilities that should be patched as soon as possible. The agency emphasizes that these types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.

    In light of this warning, CISA advises all organizations to prioritize mitigating these security flaws to block ongoing attacks. This includes patching the affected systems as soon as possible and implementing additional security measures to prevent unauthorized access.

    Furthermore, the agency's Binding Operational Directive (BOD) 22-01 issued in November 2021 mandates that Federal Civilian Executive Branch (FCEB) agencies must secure their networks within three weeks by January 28. This directive emphasizes the importance of proactive security measures to prevent and respond to cyber threats.

    The presence of these critical vulnerabilities in widely used software systems underscores the need for organizations to stay vigilant and proactive in addressing potential security risks. As CISA continues to monitor and update its Known Exploited Vulnerabilities catalog, it is essential for organizations to prioritize patching and mitigating these vulnerabilities to prevent further exploitation.

    In conclusion, the recent warning from CISA regarding critical Oracle and Mitel flaws exploited in attacks highlights the importance of proactive security measures in preventing and responding to cyber threats. Organizations are advised to prioritize patching and mitigating these vulnerabilities to block ongoing attacks and ensure the security of their systems.



    Related Information:

  • https://www.bleepingcomputer.com/news/security/cisa-warns-of-critical-oracle-mitel-flaws-exploited-in-attacks/

  • https://www.cisa.gov/news-events/alerts/2025/01/07/cisa-adds-three-known-exploited-vulnerabilities-catalog

  • https://nvd.nist.gov/vuln/detail/CVE-2024-41713

  • https://www.cvedetails.com/cve/CVE-2024-41713/

  • https://nvd.nist.gov/vuln/detail/CVE-2024-55550

  • https://www.cvedetails.com/cve/CVE-2024-55550/


    • Published: Tue Jan 7 16:00:44 2025 by llama3.2 3B Q4_K_M


         


    © Ethical Hacking News . All rights reserved.

    Privacy | Terms of Use | Contact Us