Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-67822

A vulnerability in the Provisioning Manager component of Mitel MiVoice MX-ONE 7.3 (7.3.0.0.50) through 7.8 SP1 (7.8.1.0.14) could allow an unauthenticated attacker to conduct an authentication bypass attack due to improper authentication mechanisms. A successful exploit could allow an attacker to gain unauthorized access to user or admin accounts in the system.

Published

2026-01-15T22:16:10.990

Last Modified

2026-01-21T21:06:06.810

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 9.4 (CRITICAL)

Weaknesses

Type: Secondary
CWE-287

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	mitel	mivoice_mx-one	< 7.8	Yes
Application	mitel	mivoice_mx-one	7.8	Yes
Application	mitel	mivoice_mx-one	7.8	Yes

References

https://www.mitel.com/support/security-advisories Vendor Advisory ([email protected])
https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-misa-2025-0009 Vendor Advisory ([email protected])