{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-06T17:40:46.948","vulnerabilities":[{"cve":{"id":"CVE-2024-35287","sourceIdentifier":"cve@mitre.org","published":"2024-10-21T21:15:05.450","lastModified":"2025-07-07T17:55:48.843","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability in the NuPoint Messenger (NPM) component of Mitel MiCollab through version 9.8 SP1 (9.8.1.5) could allow an authenticated attacker with administrative privilege to conduct a privilege escalation attack due to the execution of a resource with unnecessary privileges. A successful exploit could allow an attacker to execute arbitrary commands with elevated privileges."},{"lang":"es","value":"Una vulnerabilidad en el componente NuPoint Messenger (NPM) de Mitel MiCollab hasta la versión 9.8 SP1 (9.8.1.5) podría permitir que un atacante autenticado con privilegios administrativos realice un ataque de escalada de privilegios debido a la ejecución de un recurso con privilegios innecesarios. Una explotación exitosa podría permitir que un atacante ejecute comandos arbitrarios con privilegios elevados."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","baseScore":6.7,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":0.8,"impactScore":5.9}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-276"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:mitel:micollab:*:*:*:*:*:*:*:*","versionEndIncluding":"9.8.1.5","matchCriteriaId":"A86FB9E2-A0A9-45A4-86CD-073206E7E41C"}]}]}],"references":[{"url":"https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-24-0023","source":"cve@mitre.org","tags":["Vendor Advisory"]}]}}]}