Apache Log4j Remote Code Execution Vulnerability – Mitel Statement to Vulnerability

As you may be aware, a critical security vulnerability affecting Apache Log4J was recently disclosed. The vulnerability in the Apache Log4J Java logging library allows attackers to remotely execute arbitrary code, potentially impacting businesses and governments across the globe. Mitel has not observed a successful exploitation of the vulnerability, however, through rigorous investigations and analysis we have determined there are potential impacts to Mitel Partners and customers that can be proactively addressed.

Currently, we have identified a risk and fix for MiCollab. When, and if, additional vulnerabilities are identified, fixes will be rolled out and communicated.

We know that our customers’ communications are mission-critical to their business and to their own customers. We take this situation very seriously and will communicate any additional updates as required.