Audiocodes Vulnerabilidad

Cronología

Escribe

Not Defined14
IP Phone Software6

Producto

AudioCodes Device Manager Express6
AudioCodes Mediant 500L-MSBR4
AudioCodes Mediant 500-MBSR4
AudioCodes Mediant M800B-MSBR4
AudioCodes Mediant 800C-MSBR4

Contramedidas

Official Fix1
Temporary Fix0
Workaround1
Unavailable0
Not Defined18

Explotabilidad

High0
Functional0
Proof-of-Concept1
Unproven0
Not Defined19

Vector de acceso

Not Defined0
Physical0
Local0
Adjacent7
Network13

Autenticación

Not Defined0
High3
Low9
None8

La interacción del usuario

Not Defined0
Required3
None17

C3BM Index

CVSSv3 Base

≤10
≤21
≤31
≤41
≤53
≤62
≤76
≤86
≤90
≤100

CVSSv3 Temp

≤10
≤21
≤31
≤41
≤53
≤62
≤77
≤85
≤90
≤100

VulDB

≤10
≤22
≤32
≤42
≤51
≤65
≤75
≤83
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤51
≤63
≤72
≤85
≤95
≤101

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Proveedor

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Explotar día 0

<1k5
<2k14
<5k1
<10k0
<25k0
<50k0
<100k0
≥100k0

Explotar hoy

<1k18
<2k2
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Explotar el volumen del mercado

🔴 CTI Ocupaciones

Affected Products (11): 405HD (3), 440HD (1), 450HD (1), 450HD IP Phone (1), Device Manager Express (6), IP Phone 420HD (2), Mediant 500-MBSR (4), Mediant 500L-MSBR (4), Mediant 800C-MSBR (4), Mediant M800B-MSBR (4), VoIP Desk Phone (3)

Fecha de publicaciónBaseTempVulnerabilidadProdExpConEPSSCTICVE
2023-08-124.74.7AudioCodes VoIP Desk Phone Configuration File cifrado débilIP Phone SoftwareNot DefinedNot Defined0.001060.00CVE-2023-22956
2023-08-122.62.5AudioCodes VoIP Desk Phone Firmware Image autenticación débilIP Phone SoftwareNot DefinedNot Defined0.000420.00CVE-2023-22955
2023-08-122.02.0AudioCodes VoIP Desk Phone Backup libac_des3.so cifrado débilIP Phone SoftwareNot DefinedNot Defined0.000950.00CVE-2023-22957
2023-05-304.44.4AudioCodes Device Manager Express ajaxTenants.php cross site scriptingDesconocidoNot DefinedNot Defined0.000450.00CVE-2022-24631
2023-05-304.44.3AudioCodes Device Manager Express File Download BrowseFiles.php directory traversalDesconocidoNot DefinedNot Defined0.000470.00CVE-2022-24632
2023-05-306.36.2AudioCodes Device Manager Express POST Request BrowseFiles.php escalada de privilegiosDesconocidoNot DefinedNot Defined0.000500.00CVE-2022-24630
2023-05-306.76.6AudioCodes Device Manager Express IPPhoneFirmwareEdit.php sql injectionDesconocidoNot DefinedNot Defined0.000500.00CVE-2022-24628
2023-05-307.37.1AudioCodes Device Manager Express process_login.php sql injectionDesconocidoNot DefinedNot Defined0.014230.02CVE-2022-24627
2023-05-308.07.9AudioCodes Device Manager Express File Upload BrowseFiles.php directory traversalDesconocidoNot DefinedNot Defined0.002080.02CVE-2022-24629
2019-07-207.57.5AudioCodes Mediant 500L-MSBR Internal Interface escalada de privilegiosDesconocidoNot DefinedNot Defined0.000700.04CVE-2019-9229

10 no se muestran más entradas

🔒 Login Required

You need to signup and login to see more of the remaining 10 results.

AnteriorVisión De ConjuntoPróximo

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!