Patch Management Policy

Since MX-ONE runs on a commercially available operating system, vulnerabilities are frequently discovered and patched. It is crucial to ensure that MX-ONE are always updated with all critical patches to maintain the highest level of security. However, Mitel must also ensure the availability of MX-ONE servers. Installing a patch from an operating system vendor without prior testing could potentially conflict with MX-ONE software and jeopardize system availability.

To ensure the availability of the MX-ONE system and customer satisfaction, Mitel advises customers not to modify Mitel products (e.g., by installing unapproved software) without prior verification and approval from Mitel.

Mitel has established best practices for managing and installing security patches released by operating system vendors to guarantee the highest level of security and proper system functionality.

Mitel continuously monitors updates released by the operating system supplier. For Linux OS, patches and updates are released daily to address various issues, including security vulnerabilities that could be exploited to attack the system. These patches and updates must be installed promptly.

To maintain high security without compromising system functionality, Mitel tests all patches and updates from OS suppliers that can be installed on the MX-ONE. If a patch conflicts with MX-ONE software, Mitel will provide a hot fix to resolve the issue, especially for security-related updates.

Mitel regularly makes all OS patches and updates, including any necessary conflict-fixing hot fixes, available to customers. Mitel is committed to minimizing the time between the OS supplier's release and the availability of patches and updates, ensuring that system functionality is never compromised.