Cybercriminals are actively exploiting two vulnerabilities in Mitel MiCollab, including a zero-day flaw – and a critical remote code execution vulnerability in Oracle WebLogic Server that has been abused for at least five years.
Here are the three, all of which the US Cybersecurity and Infrastructure Security Agency (CISA) added to its Known Exploited Vulnerabilities Catalog based on evidence of active exploitation:
- CVE-2024-41713 Mitel MiCollab Path Traversal Vulnerability: Patch…
Article Source
https://www.theregister.com/2025/01/08/mitel_0_day_oracle_rce_under_exploit/
