Security Advisory – High Risk Stored XSS Vulnerability in Mitel MiCollab

Mitel’s advisory 24-0005, published on April 10, 2024, details a high-risk stored Cross-Site Scripting (XSS) vulnerability in MiCollab versions up to 9.7.1.110. Exploitation allows execution of arbitrary scripts. Mitel advises updating to the latest software version to mitigate this vulnerability, associated with CVEs 2024-30159 and 2024-30160.

For more information, refer to the Mitel Product Security Advisory.