Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2021-44746
HistoryFeb 01, 2022 - 3:15 p.m.

CVE-2021-44746

2022-02-0115:15:07
[email protected]
web.nvd.nist.gov
28
cve-2021-44746
univerge dt
ip phone manager
data maintenance tool
security vulnerability
remote attacker
internal network access

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

5.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

48.1%

JSON

UNIVERGE DT 820 V3.2.7.0 and prior, UNIVERGE DT 830 V5.2.7.0 and prior, UNIVERGE DT 930 V2.4.0.0 and prior, IP Phone Manager V8.9.1 and prior, Data Maintenance Tool for DT900 Series V5.3.0.0 and prior, Data Maintenance Tool for DT800 Series V4.2.0.0 and prior allows a remote attacker who can access to the internal network, the configuration information may be obtained.

Affected configurations

NVD
Node
necuniverge_dt830_firmwareRange5.2.7.0
AND
necuniverge_dt830Match-
Node
necuniverge_dt820_firmwareRange3.2.7.0
AND
necuniverge_dt820Match-
Node
necuniverge_dt930_firmwareRange2.4.0.0
AND
necuniverge_dt930Match-
Node
necuniverge_dt900_data_maintenance_toolRange5.3.0.0
Node
necuniverge_dt800_data_maintenance_toolRange4.2.0.0
Node
necuniverge_ip_phone_managerRange8.9.1

Related

jvn 1
prion 1
cvelist 1
nvd 1
jvn
jvn
JVN#13464252: UNIVERGE DT Series vulnerable to missing encryption of sensitive data
2021-12-17 00:00:00
prion
prion
Information disclosure
2022-02-01 15:15:00
cvelist
cvelist
CVE-2021-44746
2022-02-01 14:28:49
nvd
nvd
CVE-2021-44746
2022-02-01 15:15:07

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

5.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

48.1%

JSON
Related for CVE-2021-44746
jvn1prion1cvelist1nvd1