Lucene search

[email protected]NVD:CVE-2021-20677

HistoryMar 26, 2021 - 9:15 a.m.

CVE-2021-20677

2021-03-2609:15:11

[email protected]

web.nvd.nist.gov

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:N/I:N/A:P

3.1 Low

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L

0.001 Low

EPSS

Percentile

44.2%

JSON

UNIVERGE Aspire series PBX (UNIVERGE Aspire WX from 1.00 to 3.51, UNIVERGE Aspire UX from 1.00 to 9.70, UNIVERGE SV9100 from 1.00 to 10.70, and SL2100 from 1.00 to 3.00) allows a remote authenticated attacker to cause system down and a denial of service (DoS) condition by sending a specially crafted command.

Affected configurations

NVD

Node

necplatformsuniverge_aspire_wx_firmwareRange1.00–3.51

AND

necplatformsuniverge_aspire_wxMatch-

Node

necplatformsuniverge_aspire_ux_firmwareRange1.00–9.70

AND

necplatformsuniverge_aspire_uxMatch-

Node

necplatformsuniverge_sv9100_firmwareRange1.00–10.70

AND

necplatformsuniverge_sv9100Match-

Node

necplatformssl2100_firmwareRange1.00–3.00

AND

necplatformssl2100Match-

References

jvn.jp/en/jp/JVN12737530/index.html

www.necplatforms.co.jp/en/press/security_adv.html

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:N/I:N/A:P

3.1 Low

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L

0.001 Low

EPSS

Percentile

44.2%

JSON

Related for NVD:CVE-2021-20677

prion1 jvn1 cvelist1 cve1