Vulnerability Details CVE-2025-52914
A vulnerability in the Suite Applications Services component of Mitel MiCollab 10.0 through SP1 FP1 (10.0.1.101) could allow an authenticated attacker to conduct a SQL Injection attack due to insufficient validation of user input. A successful exploit could allow an attacker to execute arbitrary SQL database commands.
Exploit prediction scoring system (EPSS) score
CVSS Severity
CVSS v3 Score 8.8
Products affected by CVE-2025-52914
-
cpe:2.3:a:mitel:micollab:*
-
cpe:2.3:a:mitel:micollab:-
-
cpe:2.3:a:mitel:micollab:7.3
-
cpe:2.3:a:mitel:micollab:8.0
-
cpe:2.3:a:mitel:micollab:8.1
-
cpe:2.3:a:mitel:micollab:8.1.1
-
cpe:2.3:a:mitel:micollab:8.1.2
-
cpe:2.3:a:mitel:micollab:9.0
-
cpe:2.3:a:mitel:micollab:9.1
-
cpe:2.3:a:mitel:micollab:9.1.2
-
cpe:2.3:a:mitel:micollab:9.1.3
-
cpe:2.3:a:mitel:micollab:9.2
-
cpe:2.3:a:mitel:micollab:9.3
-
cpe:2.3:a:mitel:micollab:9.4
-
cpe:2.3:a:mitel:micollab:9.5.0.101
-
cpe:2.3:a:mitel:micollab:9.6
-
cpe:2.3:a:mitel:micollab:9.6.2.9
-
cpe:2.3:a:mitel:micollab:9.7
-
cpe:2.3:a:mitel:micollab:9.7.1.110
-
cpe:2.3:a:mitel:micollab:9.8
-
cpe:2.3:a:mitel:micollab:9.8.0.33
-
cpe:2.3:a:mitel:micollab:9.8.1.201
-
cpe:2.3:a:mitel:micollab:9.8.1.5