Audiocodes Vulnérabilités

Chronologie

Taper

Not Defined14
IP Phone Software6

Produit

AudioCodes Device Manager Express6
AudioCodes Mediant 500L-MSBR4
AudioCodes Mediant 500-MBSR4
AudioCodes Mediant M800B-MSBR4
AudioCodes Mediant 800C-MSBR4

Contre-mesures

Official Fix1
Temporary Fix0
Workaround1
Unavailable0
Not Defined18

Exploitabilité

High0
Functional0
Proof-of-Concept1
Unproven0
Not Defined19

Vecteur d'accès

Not Defined0
Physical0
Local0
Adjacent7
Network13

Authentification

Not Defined0
High3
Low9
None8

Interaction de l'utilisateur

Not Defined0
Required3
None17

C3BM Index

CVSSv3 Base

≤10
≤21
≤31
≤41
≤53
≤62
≤76
≤86
≤90
≤100

CVSSv3 Temp

≤10
≤21
≤31
≤41
≤53
≤62
≤77
≤85
≤90
≤100

VulDB

≤10
≤22
≤32
≤42
≤51
≤65
≤75
≤83
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤51
≤63
≤72
≤85
≤95
≤101

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Fournisseur

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 jour

<1k5
<2k14
<5k1
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k16
<2k4
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter le volume du marché

🔴 CTI Activités

Affected Products (11): 405HD (3), 440HD (1), 450HD (1), 450HD IP Phone (1), Device Manager Express (6), IP Phone 420HD (2), Mediant 500-MBSR (4), Mediant 500L-MSBR (4), Mediant 800C-MSBR (4), Mediant M800B-MSBR (4), VoIP Desk Phone (3)

PubliéBaseTempVulnérabilitéProdExpConEPSSCTICVE
12/08/20234.74.7AudioCodes VoIP Desk Phone Configuration File chiffrement faibleIP Phone SoftwareNot DefinedNot Defined0.001060.00CVE-2023-22956
12/08/20232.62.5AudioCodes VoIP Desk Phone Firmware Image authentification faibleIP Phone SoftwareNot DefinedNot Defined0.000420.00CVE-2023-22955
12/08/20232.02.0AudioCodes VoIP Desk Phone Backup libac_des3.so chiffrement faibleIP Phone SoftwareNot DefinedNot Defined0.000950.00CVE-2023-22957
30/05/20234.44.4AudioCodes Device Manager Express ajaxTenants.php cross site scriptingInconnueNot DefinedNot Defined0.000450.00CVE-2022-24631
30/05/20234.44.3AudioCodes Device Manager Express File Download BrowseFiles.php directory traversalInconnueNot DefinedNot Defined0.000470.00CVE-2022-24632
30/05/20236.36.2AudioCodes Device Manager Express POST Request BrowseFiles.php elévation de privilègesInconnueNot DefinedNot Defined0.000500.00CVE-2022-24630
30/05/20236.76.6AudioCodes Device Manager Express IPPhoneFirmwareEdit.php sql injectionInconnueNot DefinedNot Defined0.000500.00CVE-2022-24628
30/05/20237.37.1AudioCodes Device Manager Express process_login.php sql injectionInconnueNot DefinedNot Defined0.014230.02CVE-2022-24627
30/05/20238.07.9AudioCodes Device Manager Express File Upload BrowseFiles.php directory traversalInconnueNot DefinedNot Defined0.002080.02CVE-2022-24629
20/07/20197.57.5AudioCodes Mediant 500L-MSBR Internal Interface elévation de privilègesInconnueNot DefinedNot Defined0.000700.04CVE-2019-9229

10 plus d'entrées ne sont pas affichées

🔒 Login Required

You need to signup and login to see more of the remaining 10 results.

PrécédentAperçuSuivant

Might our Artificial Intelligence support you?

Check our Alexa App!