CVE-2022-26143
high-risk
Published 2022-03-10
The TP-240 (aka tp240dvr) component in Mitel MiCollab before 9.4 SP1 FP1 and MiVoice Business Express through 8.1 allows remote attackers to obtain sensitive information and cause a denial of service (performance degradation and excessive outbound traffic). This was exploited in the wild in February and March 2022 for the TP240PhoneHome DDoS attack.
Do I need to act?
!
89.5% chance of exploitation in next 30 days
EPSS score — higher than 10% of all CVEs
!
CISA KEV: actively exploited in the wild
On the Known Exploited Vulnerabilities catalog — federal agencies must patch
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
9
CVSS 9.8/10
Critical
NETWORK
/ LOW complexity
Affected Products (4)
Affected Vendors
References (15)
Mitigation
https://blog.cloudflare.com/cve-2022-26143/
Issue Tracking
https://news.ycombinator.com/item?id=30614073
Mitigation
https://blog.cloudflare.com/cve-2022-26143/
Issue Tracking
https://news.ycombinator.com/item?id=30614073
US Government Resource
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-...
69
/ 100
high-risk
Severity
32/34 · Critical
Exploitability
27/34 · High
Exposure
10/34 · Low