Lucene search

[email protected]CVE-2006-0834

HistoryFeb 22, 2006 - 2:02 a.m.

CVE-2006-0834

2006-02-2202:02:00

[email protected]

web.nvd.nist.gov

uniden

uip1868p

voip

telephone

router

default password

remote attackers

sensitive information

vulnerability

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.4 Medium

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

81.1%

JSON

Uniden UIP1868P VoIP Telephone and Router has a default password of admin for the web-based configuration utility, which allows remote attackers to obtain sensitive information on the device such as telephone numbers called, and possibly connect to other hosts. NOTE: it is possible that this password was configured by a reseller, not the original vendor; if so, then this is not a vulnerability in the product.

Affected configurations

NVD

Node

unidenuip1868p

CPENameOperatorVersion
uniden:uip1868puniden uip1868peq*

CPE	Name	Operator	Version
uniden:uip1868p	uniden uip1868p	eq	*

References

www.securityfocus.com/archive/1/425362/100/0/threaded

exchange.xforce.ibmcloud.com/vulnerabilities/24786

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.4 Medium

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

81.1%

JSON

Related for CVE-2006-0834

cvelist1 prion1 nvd1