Refine your search
2 vulnerabilities found for OpenScape 4000 by Mitel
CERTFR-2026-AVI-0672
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits Mitel. Elles permettent à un attaquant de provoquer une élévation de privilèges.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Mitel | MiVoice Business | MiVoice Business toutes versions 10.3.x | ||
| Mitel | Mitel Open Integration Gateway | Mitel Open Integration Gateway toutes versions 4.3.x | ||
| Mitel | OpenScape SBC | OpenScape SBC version V10.3 sans le correctif de sécurité KB000127880 | ||
| Mitel | OpenScape Branch | OpenScape Branch version V10.3 sans le correctif de sécurité KB000127880 | ||
| Mitel | Mitel SIP DECT | Mitel SIP DECT toutes versions 10.x sans le correctif de sécurité KB000127880 | ||
| Mitel | OpenScape Xpert Clients 6010P | OpenScape Xpert Clients 6010P version V7 sans le correctif de sécurité KB000127880 | ||
| Mitel | Mitel Standard Linux | Mitel Standard Linux toutes versions 12.x | ||
| Mitel | MiVoice Business | MiVoice Business toutes versions 10.1.x | ||
| Mitel | MiVoice MX-ONE | MiVoice MX-ONE toutes versions 8.x sans le correctif de sécurité KB000127880 | ||
| Mitel | OpenScape Voice Server | OpenScape Voice Server version V10 sans le correctif de sécurité KB000127880 | ||
| Mitel | MiVoice MX-ONE | MiVoice MX-ONE toutes versions 7.3 à 7.8 sans le correctif de sécurité KB000127880 | ||
| Mitel | MiCollab | MiCollab toutes versions 10.x sans le correctif de sécurité KB000127880 | ||
| Mitel | OpenScape Voice Server | OpenScape Voice Server version V9R3 JITC sans le correctif de sécurité KB000127880 | ||
| Mitel | OpenScape 4000 | OpenScape 4000 version V11 R0.22 sans le correctif de sécurité KB000127880 | ||
| Mitel | OpenScape 4000 | OpenScape 4000 toutes versions V10 R1.x sans le correctif de sécurité KB000127880 | ||
| Mitel | OpenScape Xpert Clients 6010P | OpenScape Xpert Clients 6010P version V8 sans le correctif de sécurité KB000127880 | ||
| Mitel | OpenScape SBC | OpenScape SBC toutes versions V11.x sans le correctif de sécurité KB000127880 | ||
| Mitel | MiVoice Business | MiVoice Business toutes versions 10.4.x | ||
| Mitel | OpenScape Contact Media Service (used by Mitel CX and OpenScape Contact Center) | OpenScape Contact Media Service (used by Mitel CXand OpenScape Contact Center) toutes versions V12Rx sans le correctif de sécurité KB000127880 | ||
| Mitel | MiVoice 5000 | MiVoice 5000 toutes versions 8.x sans le correctif de sécurité KB000127880 | ||
| Mitel | MiVoice Business | MiVoice Business toutes versions 10.2.x | ||
| Mitel | OpenScape Voice Server | OpenScape Voice Server version V11 sans le correctif de sécurité KB000127880 | ||
| Mitel | Mitel Performance Analytics | Mitel Performance Analytics toutes versions 3.6x sans le correctif de sécurité KB000127880 | ||
| Mitel | MiVoice Business Solution Virtual Instance | MiVoice Business Solution Virtual Instance toutes versions 2.x | ||
| Mitel | OpenScape 4000 | OpenScape 4000 version V11 R1.26 sans le correctif de sécurité KB000127880 | ||
| Mitel | MiVoice Business | MiVoice Business toutes versions 10.5.x | ||
| Mitel | MiCloud Management Portal | MiCloud Management Portal toutes versions 6.3.x | ||
| Mitel | MiVoice Border Gateway | MiVoice Border Gateway toutes versions 12.x | ||
| Mitel | MiVoice Border Gateway | MiVoice Border Gateway toutes versions 11.6.x | ||
| Mitel | OpenScape Branch | OpenScape Branch toutes versions V11.x sans le correctif de sécurité KB000127880 |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "MiVoice Business toutes versions 10.3.x",
"product": {
"name": "MiVoice Business",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "Mitel Open Integration Gateway toutes versions 4.3.x",
"product": {
"name": "Mitel Open Integration Gateway",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "OpenScape SBC version V10.3 sans le correctif de s\u00e9curit\u00e9 KB000127880",
"product": {
"name": "OpenScape SBC",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "OpenScape Branch version V10.3 sans le correctif de s\u00e9curit\u00e9 KB000127880",
"product": {
"name": "OpenScape Branch",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "Mitel SIP DECT toutes versions 10.x sans le correctif de s\u00e9curit\u00e9 KB000127880",
"product": {
"name": "Mitel SIP DECT",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "OpenScape Xpert Clients 6010P version V7 sans le correctif de s\u00e9curit\u00e9 KB000127880",
"product": {
"name": "OpenScape Xpert Clients 6010P",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "Mitel Standard Linux toutes versions 12.x",
"product": {
"name": "Mitel Standard Linux",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "MiVoice Business toutes versions 10.1.x",
"product": {
"name": "MiVoice Business",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "MiVoice MX-ONE toutes versions 8.x sans le correctif de s\u00e9curit\u00e9 KB000127880",
"product": {
"name": "MiVoice MX-ONE",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "OpenScape Voice Server version V10 sans le correctif de s\u00e9curit\u00e9 KB000127880",
"product": {
"name": "OpenScape Voice Server",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "MiVoice MX-ONE toutes versions 7.3 \u00e0 7.8 sans le correctif de s\u00e9curit\u00e9 KB000127880",
"product": {
"name": "MiVoice MX-ONE",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "MiCollab toutes versions 10.x sans le correctif de s\u00e9curit\u00e9 KB000127880 ",
"product": {
"name": "MiCollab",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "OpenScape Voice Server version V9R3 JITC sans le correctif de s\u00e9curit\u00e9 KB000127880",
"product": {
"name": "OpenScape Voice Server",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "OpenScape 4000 version V11 R0.22 sans le correctif de s\u00e9curit\u00e9 KB000127880",
"product": {
"name": "OpenScape 4000",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "OpenScape 4000 toutes versions V10 R1.x sans le correctif de s\u00e9curit\u00e9 KB000127880",
"product": {
"name": "OpenScape 4000",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "OpenScape Xpert Clients 6010P version V8 sans le correctif de s\u00e9curit\u00e9 KB000127880",
"product": {
"name": "OpenScape Xpert Clients 6010P",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "OpenScape SBC toutes versions V11.x sans le correctif de s\u00e9curit\u00e9 KB000127880",
"product": {
"name": "OpenScape SBC",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "MiVoice Business toutes versions 10.4.x",
"product": {
"name": "MiVoice Business",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "OpenScape Contact Media Service (used by Mitel CXand OpenScape Contact Center) toutes versions V12Rx sans le correctif de s\u00e9curit\u00e9 KB000127880",
"product": {
"name": "OpenScape Contact Media Service (used by Mitel CX and OpenScape Contact Center)",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "MiVoice 5000 toutes versions 8.x sans le correctif de s\u00e9curit\u00e9 KB000127880",
"product": {
"name": "MiVoice 5000",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "MiVoice Business toutes versions 10.2.x",
"product": {
"name": "MiVoice Business",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "OpenScape Voice Server version V11 sans le correctif de s\u00e9curit\u00e9 KB000127880",
"product": {
"name": "OpenScape Voice Server",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "Mitel Performance Analytics toutes versions 3.6x sans le correctif de s\u00e9curit\u00e9 KB000127880",
"product": {
"name": "Mitel Performance Analytics",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "MiVoice Business Solution Virtual Instance toutes versions 2.x",
"product": {
"name": "MiVoice Business Solution Virtual Instance",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "OpenScape 4000 version V11 R1.26 sans le correctif de s\u00e9curit\u00e9 KB000127880",
"product": {
"name": "OpenScape 4000",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "MiVoice Business toutes versions 10.5.x",
"product": {
"name": "MiVoice Business",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "MiCloud Management Portal toutes versions 6.3.x",
"product": {
"name": "MiCloud Management Portal",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "MiVoice Border Gateway toutes versions 12.x",
"product": {
"name": "MiVoice Border Gateway",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "MiVoice Border Gateway toutes versions 11.6.x",
"product": {
"name": "MiVoice Border Gateway",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "OpenScape Branch toutes versions V11.x sans le correctif de s\u00e9curit\u00e9 KB000127880",
"product": {
"name": "OpenScape Branch",
"vendor": {
"name": "Mitel",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2026-43284",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-43284"
},
{
"name": "CVE-2026-43500",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-43500"
}
],
"initial_release_date": "2026-06-01T00:00:00",
"last_revision_date": "2026-06-01T00:00:00",
"links": [],
"reference": "CERTFR-2026-AVI-0672",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2026-06-01T00:00:00.000000"
}
],
"risks": [
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Mitel. Elles permettent \u00e0 un attaquant de provoquer une \u00e9l\u00e9vation de privil\u00e8ges.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Mitel",
"vendor_advisories": [
{
"published_at": "2026-05-28",
"title": "Bulletin de s\u00e9curit\u00e9 Mitel MISA-2026-0004",
"url": "https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-misa-2026-0004"
}
]
}
CERTFR-2025-AVI-0065
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits Mitel. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, une élévation de privilèges et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Mitel | MiContact Center Business | MiContact Center Business versions 10.2.0.x antérieures à 10.2.0.3 (KB20256817) | ||
| Mitel | OpenScape 4000 | OpenScape 4000 versions V11 R0.22.x antérieures à V11 R0.22.2 | ||
| Mitel | MiContact Center Business | MiContact Center Business versions 10.1.0.x antérieures à 10.1.0.5 (KB570775) | ||
| Mitel | MiContact Center Business | MiContact Center Business versions antérieures à 10.0.0.4 (KB569707) | ||
| Mitel | OpenScape 4000 | OpenScape 4000 versions V10 R1.54.x antérieures à V10 R1.54.2 | ||
| Mitel | OpenScape 4000 Manager | OpenScape 4000 versions antérieures à V10 R1.42.7 | ||
| Mitel | OpenScape 4000 | OpenScape 4000 versions antérieures à V10 R1.42.7 | ||
| Mitel | OpenScape 4000 Manager | OpenScape 4000 versions V10 R1.54.x antérieures à V10 R1.54.2 | ||
| Mitel | OpenScape 4000 Manager | OpenScape 4000 versions V11 R0.22.x antérieures à V11 R0.22.2 |
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "MiContact Center Business versions 10.2.0.x ant\u00e9rieures \u00e0 10.2.0.3 (KB20256817)",
"product": {
"name": "MiContact Center Business",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "OpenScape 4000 versions V11 R0.22.x ant\u00e9rieures \u00e0 V11 R0.22.2",
"product": {
"name": "OpenScape 4000",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "MiContact Center Business versions 10.1.0.x ant\u00e9rieures \u00e0 10.1.0.5 (KB570775)",
"product": {
"name": "MiContact Center Business",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "MiContact Center Business versions ant\u00e9rieures \u00e0 10.0.0.4 (KB569707)",
"product": {
"name": "MiContact Center Business",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "OpenScape 4000 versions V10 R1.54.x ant\u00e9rieures \u00e0 V10 R1.54.2",
"product": {
"name": "OpenScape 4000",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "OpenScape 4000 versions ant\u00e9rieures \u00e0 V10 R1.42.7",
"product": {
"name": "OpenScape 4000 Manager",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "OpenScape 4000 versions ant\u00e9rieures \u00e0 V10 R1.42.7",
"product": {
"name": "OpenScape 4000",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "OpenScape 4000 versions V10 R1.54.x ant\u00e9rieures \u00e0 V10 R1.54.2",
"product": {
"name": "OpenScape 4000 Manager",
"vendor": {
"name": "Mitel",
"scada": false
}
}
},
{
"description": "OpenScape 4000 versions V11 R0.22.x ant\u00e9rieures \u00e0 V11 R0.22.2",
"product": {
"name": "OpenScape 4000 Manager",
"vendor": {
"name": "Mitel",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-23093",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23093"
},
{
"name": "CVE-2025-23094",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23094"
}
],
"initial_release_date": "2025-01-23T00:00:00",
"last_revision_date": "2025-01-23T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0065",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-01-23T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Mitel. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire, une \u00e9l\u00e9vation de privil\u00e8ges et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Mitel",
"vendor_advisories": [
{
"published_at": "2025-01-22",
"title": "Bulletin de s\u00e9curit\u00e9 Mitel 2025-0002",
"url": "https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-misa-2025-0002"
},
{
"published_at": "2025-01-22",
"title": "Bulletin de s\u00e9curit\u00e9 Mitel 2025-0001",
"url": "https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-misa-2025-0001"
}
]
}