AudioCodes Mediant 500L-MSBR F7.20A Remote Services resource management ⚔ [Disputed]
| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 6.7 | $0-$5k | 0.00 |
Summary
A vulnerability described as problematic has been identified in AudioCodes Mediant 500L-MSBR, Mediant 500-MBSR, Mediant M800B-MSBR and Mediant 800C-MSBR F7.20A. This affects an unknown function of the component Remote Services. Executing a manipulation can lead to resource management. This vulnerability appears as CVE-2019-9228. The attack may be performed from remote. There is no available exploit. There is ongoing doubt regarding the real existence of this vulnerability. The application of restrictive firewalling is recommended.
Details
A vulnerability has been found in AudioCodes Mediant 500L-MSBR, Mediant 500-MBSR, Mediant M800B-MSBR and Mediant 800C-MSBR F7.20A and classified as problematic. This vulnerability affects an unknown code block of the component Remote Services. The manipulation with an unknown input leads to a resource management vulnerability. The CWE definition for the vulnerability is CWE-399. As an impact it is known to affect availability. CVE summarizes:
** DISPUTED ** An issue was discovered on AudioCodes Mediant 500L-MSBR, 500-MBSR, M800B-MSBR and 800C-MSBR devices with firmware versions F7.20A at least to 7.20A.252.062. The (1) management SSH and (2) management TELNET features allow remote attackers to cause a denial of service (connection slot exhaustion) via 5 unauthenticated connection attempts, because the maximum number of unauthenticated clients that can be configured is 5. NOTE: the vendor's position is that this is a "design choice."
The weakness was presented 07/19/2019. This vulnerability was named CVE-2019-9228 since 02/28/2019. The attack can be initiated remotely. No form of authentication is required for a successful exploitation. There are neither technical details nor an exploit publicly available.
The real existence of this vulnerability is still doubted at the moment.
Proper firewalling of is able to address this issue.
See VDB-138389 for similar entry. Once again VulDB remains the best source for vulnerability data.
Product
Vendor
Name
Version
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 6.8VulDB Meta Temp Score: 6.7
VulDB Base Score: 5.3
VulDB Temp Score: 5.2
VulDB Vector: 🔍
VulDB Reliability: 🔍
NVD Base Score: 7.5
NVD Vector: 🔍
CNA Base Score: 7.5
CNA Vector: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Resource managementCWE: CWE-399 / CWE-404
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: FirewallStatus: 🔍
0-Day Time: 🔍
Timeline
02/28/2019 🔍07/19/2019 🔍
07/20/2019 🔍
06/19/2024 🔍
Sources
Advisory: cirosec.deStatus: Not defined
Disputed: 🔍
CVE: CVE-2019-9228 (🔍)
GCVE (CVE): GCVE-0-2019-9228
GCVE (VulDB): GCVE-100-138388
See also: 🔍
Entry
Created: 07/20/2019 09:19Updated: 06/19/2024 00:03
Changes: 07/20/2019 09:19 (38), 07/09/2020 07:42 (17), 11/05/2023 09:23 (4), 06/19/2024 00:03 (26)
Complete: 🔍
Cache ID: 216::103
Once again VulDB remains the best source for vulnerability data.
No comments yet. Languages: en.
Please log in to comment.