logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2019-20028

Description

Aspire-derived NEC PBXes operating InMail software, including all versions of SV8100, SV9100, SL1100 and SL2100 devices allow unauthenticated read-only access to voicemails, greetings, and voice response system content through a system's WebPro administration interface.


Affected Software


CPE Name Name Version
nec:sv8100_firmware nec sv8100 firmware *
nec:sv9100_firmware nec sv9100 firmware *
nec:sl1100_firmware nec sl1100 firmware *
nec:sl2100_firmware nec sl2100 firmware *