Vulnerability Database

322,905

Total vulnerabilities in the database

CVE-2025-67822

A vulnerability in the Provisioning Manager component of Mitel MiVoice MX-ONE 7.3 (7.3.0.0.50) through 7.8 SP1 (7.8.1.0.14) could allow an unauthenticated attacker to conduct an authentication bypass attack due to improper authentication mechanisms. A successful exploit could allow an attacker to gain unauthorized access to user or admin accounts in the system.

Published: Jan 15, 2026
Updated: Jan 17, 2026
CVE: CVE-2025-67822
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.4
AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H

CWEs:

CWE-287

OWASP TOP 10:

A2 - Broken Authentication

Affected Software
References

Software	From	Fixed in
mitel / mivoice_mx-one	7.3	7.8
mitel / mivoice_mx-one	7.8	7.8.x
mitel / mivoice_mx-one	7.8-sp1	7.8-sp1.x

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo