CISA addS three new bugs to KEV - two in Mitel’s MiCollab, and one in Oracle WebLogic Server The bugs allowed crooks to read sensitive files and take over vulnerable endpoints Federal agencies ...

CISA has warned U.S. federal agencies to secure their systems against critical vulnerabilities in Oracle WebLogic Server and Mitel MiCollab systems that are actively exploited in attacks. The ...

Mitel has announced patches for a MiCollab path traversal vulnerability that can be exploited remotely without authentication.

CISA added the flaws to its known vulnerability catalog, recommending swift patching pursuant to Binding Operational Directive (BOD) 22-01. Attackers are actively expoiting flaws in Mitel MiCollab ...

Mitel has addressed these vulnerabilities in MiCollab version 9.8 SP2 (9.8.2.12) and later. CISA is also warning about CVE-2020-2883, a vulnerability in Oracle's WebLogic Server that was patched ...

Too many vulnerable IT/OT assets are unnecessarily online, says CISA. It offers advice on what to do about it. The US Cybersecurity and Infrastructure Security Agency (CISA) this week issued ...

A directive against CISA and its former director Christopher Krebs raises concerns over the agency’s neutrality, operational stability, and future role in public-private cyber defense.

“Last night, CISA executed the option period on the contract to ensure there will be no lapse in critical CVE services,” an agency spokesperson said. The Cybersecurity and Infrastructure ...

8. "These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise," CISA said. Mitel’s MiCollab is a popular unified ...