CVE-2024-47912 is a vulnerability identified in the AWV (Audio, Web, and Video) Conferencing component of Mitel MiCollab software versions through 9.8 SP1 FP2 (9.8.1.201). The root cause is the absence of proper authentication mechanisms, classified under CWE-306 (Missing Authentication for Critical Function). This flaw allows an unauthenticated attacker to remotely access the conferencing component without any credentials or user interaction. Once exploited, the attacker can perform unauthorized data-access attacks, including reading and deleting sensitive information managed or transmitted by the conferencing system. The vulnerability affects the confidentiality and integrity of data but does not impact availability directly. The CVSS v3.1 base score is 8.2, with vector AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N, indicating network attack vector, low attack complexity, no privileges or user interaction required, unchanged scope, high confidentiality impact, low integrity impact, and no availability impact. No public exploit code or active exploitation has been reported yet, but the severity and ease of exploitation make this a critical concern for organizations using Mitel MiCollab for unified communications and collaboration. The lack of authentication on a critical conferencing component could allow attackers to compromise sensitive communications and data, potentially leading to data breaches or operational disruptions.

The vulnerability poses a significant risk to organizations worldwide that use Mitel MiCollab for audio, web, and video conferencing. Unauthorized access to sensitive communications and data can lead to data breaches, loss of intellectual property, exposure of confidential business or government information, and potential compliance violations. The ability to delete data further increases the risk of operational disruption and data integrity loss. Since the vulnerability requires no authentication or user interaction, attackers can exploit it remotely and at scale, potentially targeting multiple organizations simultaneously. This could undermine trust in Mitel’s conferencing solutions and impact critical communications infrastructure, especially in sectors such as government, finance, healthcare, and large enterprises where secure collaboration is essential. The absence of known exploits in the wild currently reduces immediate risk but does not diminish the urgency for remediation due to the high severity and ease of exploitation.

Organizations should immediately assess their use of Mitel MiCollab versions up to 9.8 SP1 FP2 and plan to upgrade to a patched version once available. In the absence of official patches, network-level mitigations should be implemented, such as restricting access to the AWV Conferencing component to trusted internal networks only, using firewalls and segmentation to limit exposure. Deploying intrusion detection and prevention systems (IDS/IPS) with signatures or anomaly detection for suspicious access attempts to the conferencing service can help detect exploitation attempts. Monitoring logs for unauthorized access or deletion activities is critical. Additionally, organizations should review and tighten access controls around conferencing infrastructure and consider multi-factor authentication for administrative interfaces. Engaging with Mitel support for guidance and applying any recommended temporary workarounds is advised. Finally, organizations should educate their security teams about this vulnerability to ensure rapid response if exploitation attempts are detected.