Apple and Mitel Vulnerabilities: When Phones Double as Unwanted Doorways!
U.S. CISA has added Apple iOS and iPadOS and Mitel SIP Phones vulnerabilities to its Known Exploited Vulnerabilities catalog. Apple patched a sophisticated zero-day flaw, CVE-2025-24200, affecting USB Restricted Mode. Meanwhile, Mitel SIP Phones face CVE-2024-41710, a command injection vulnerability, prompting urgent firmware updates.

Hot Take:
Looks like Apple’s devices and Mitel phones are getting their 15 minutes of infamy on CISA’s Wall of Shame! If your iPhone or SIP phone suddenly starts acting all rebellious, don’t be surprised—it’s just auditioning for the next season of ‘Hackers Gone Wild.’ Time to update faster than you can say ‘zero-day!’
Key Points:
- Apple iOS and iPadOS have a zero-day vulnerability (CVE-2025-24200) affecting USB Restricted Mode.
- Mitel SIP Phones are suffering from an argument injection vulnerability (CVE-2024-41710).
- Apple has released urgent updates, but isn’t disclosing juicy attack details.
- Mitel mitigated their vulnerability with firmware updates amid botnet attacks.
- CISA’s directive demands federal agencies to fix these vulnerabilities by March 5, 2025.
Already a member? Log in here