Audiocodes Vulnerabilidades

Curso de tempo

Tipo

Produto

AudioCodes Device Manager Express6
AudioCodes Mediant 500L-MSBR4
AudioCodes Mediant 500-MBSR4
AudioCodes Mediant M800B-MSBR4
AudioCodes Mediant 800C-MSBR4

Medidas

Official Fix1
Temporary Fix0
Workaround1
Unavailable0
Not Defined18

Explorabilidade

High0
Functional0
Proof-of-Concept1
Unproven0
Not Defined19

Tipo de acesso

Not Defined0
Physical0
Local0
Adjacent7
Network13

Autenticação

Not Defined0
High3
Low9
None8

Actividade do utilizador

Not Defined0
Required3
None17

C3BM Index

CVSSv3 Base

≤10
≤21
≤31
≤41
≤53
≤62
≤76
≤86
≤90
≤100

CVSSv3 Temp

≤10
≤21
≤31
≤41
≤53
≤62
≤77
≤85
≤90
≤100

VulDB

≤10
≤22
≤32
≤42
≤51
≤65
≤75
≤83
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤51
≤63
≤72
≤85
≤95
≤101

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Fabricante

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Explorar 0 dia

<1k5
<2k14
<5k1
<10k0
<25k0
<50k0
<100k0
≥100k0

Explorar hoje

<1k19
<2k1
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Explorar o volume do mercado

🔴 CTI Actividades

Affected Products (11): 405HD (3), 440HD (1), 450HD (1), 450HD IP Phone (1), Device Manager Express (6), IP Phone 420HD (2), Mediant 500-MBSR (4), Mediant 500L-MSBR (4), Mediant 800C-MSBR (4), Mediant M800B-MSBR (4), VoIP Desk Phone (3)

Publicado emBaseTempVulnerabilidadeProdExpMasCTIEPSSCVE
12/08/20234.74.7AudioCodes VoIP Desk Phone Configuration File Encriptação fracaIP Phone SoftwareNot DefinedNot Defined0.020.00106CVE-2023-22956
12/08/20232.62.5AudioCodes VoIP Desk Phone Firmware Image Fraca autenticaçãoIP Phone SoftwareNot DefinedNot Defined0.000.00042CVE-2023-22955
12/08/20232.02.0AudioCodes VoIP Desk Phone Backup libac_des3.so Encriptação fracaIP Phone SoftwareNot DefinedNot Defined0.000.00095CVE-2023-22957
30/05/20234.44.4AudioCodes Device Manager Express ajaxTenants.php Roteiro Cruzado de SítiosDesconhecidoNot DefinedNot Defined0.000.00045CVE-2022-24631
30/05/20234.44.3AudioCodes Device Manager Express File Download BrowseFiles.php Directório TraversalDesconhecidoNot DefinedNot Defined0.040.00047CVE-2022-24632
30/05/20236.36.2AudioCodes Device Manager Express POST Request BrowseFiles.php direitos alargadosDesconhecidoNot DefinedNot Defined0.000.00049CVE-2022-24630
30/05/20236.76.6AudioCodes Device Manager Express IPPhoneFirmwareEdit.php Injecção SQLDesconhecidoNot DefinedNot Defined0.000.00050CVE-2022-24628
30/05/20237.37.1AudioCodes Device Manager Express process_login.php Injecção SQLDesconhecidoNot DefinedNot Defined0.020.00109CVE-2022-24627
30/05/20238.07.9AudioCodes Device Manager Express File Upload BrowseFiles.php Directório TraversalDesconhecidoNot DefinedNot Defined0.020.00208CVE-2022-24629
20/07/20197.57.5AudioCodes Mediant 500L-MSBR Internal Interface direitos alargadosDesconhecidoNot DefinedNot Defined0.040.00070CVE-2019-9229

10 as entradas adicionais não são mais exibidas

Do you need the next level of professionalism?

Upgrade your account now!