256 matches found
CVE-2024-52882
An issue was discovered in AudioCodes One Voice Operations Center OVOC before 8.4.582. Due to improper neutralization of input via the devices API, an attacker can inject malicious JavaScript code XSS to attack logged-in administrator sessions...
CVE-2024-52881
AudioCodes One Voice Operations Center (OVOC) prior to version 8.4.582 contains a vulnerability caused by the use of a hard-coded key that allows an attacker to decrypt sensitive data such as passwords stored in the topology file. The issue affects OVOC and can lead to exposure of credentials and...
AudioCodes Mediant Session Border Controller 安全漏洞
AudioCodes Mediant Session Border Controller AudioCodes Mediant SBC is a session border controller from AudioCodes, Inc. A security vulnerability exists in AudioCodes Mediant Session Border Controller SBC versions prior to 7.40A.501.841, which stems from the use of weak password obfuscation, wher...
CVE-2024-52884
An issue was discovered in AudioCodes Mediant Session Border Controller SBC before 7.40A.501.841. Due to the use of weak password obfuscation/encryption, an attacker with access to configuration exports INI is able to decrypt the passwords...
CVE-2024-52883
An issue was discovered in AudioCodes One Voice Operations Center OVOC before 8.4.582. Due to a path traversal vulnerability, sensitive data can be read without any authentication...
CVE-2024-52884
An issue was discovered in AudioCodes Mediant Session Border Controller SBC before 7.40A.501.841. Due to the use of weak password obfuscation/encryption, an attacker with access to configuration exports INI is able to decrypt the passwords...
CVE-2024-52882
CVE-2024-52882 affects AudioCodes One Voice Operations Center (OVOC) prior to 8.4.582. The issue stems from improper neutralization of input via the devices API, enabling an attacker to inject malicious JavaScript (XSS) that targets logged-in administrator sessions. Impact is limited to cross-sit...
CVE-2024-52881
An issue was discovered in AudioCodes One Voice Operations Center OVOC before 8.4.582. Due to the use of a hard-coded key, an attacker is able to decrypt sensitive data such as passwords extracted from the topology file...
CVE-2024-52883
An issue was discovered in AudioCodes One Voice Operations Center OVOC before 8.4.582. Due to a path traversal vulnerability, sensitive data can be read without any authentication...
AudioCodes One Voice Operations Center 安全漏洞
AudioCodes One Voice Operations Center AudioCodes OVOC is a web-based voice network management solution from AudioCodes, Inc. A security vulnerability exists in AudioCodes One Voice Operations Center OVOC versions prior to 8.4.582 that stems from the use of a hard-coded key that allows an attacke...
AudioCodes One Voice Operations Center 安全漏洞
AudioCodes One Voice Operations Center AudioCodes OVOC is a web-based voice network management solution from AudioCodes, Inc. A security vulnerability exists in AudioCodes One Voice Operations Center OVOC versions prior to 8.4.582, which stems from improper neutralization of inputs via the device...
CVE-2024-52883
The CVE-2024-52883 entry concerns AudioCodes One Voice Operations Center (OVOC) prior to version 8.4.582. The issue is a path traversal vulnerability that allows reading of sensitive data without authentication. Connected sources confirm the affected software and the underlying cause (path traver...
PT-2025-5977 · Audiocodes · Audiocodes One Voice Operations Center
Name of the Vulnerable Software and Affected Versions: AudioCodes One Voice Operations Center OVOC versions prior to 8.4.582 Description: The issue is related to improper neutralization of input via the devices API, allowing an attacker to inject malicious JavaScript code XSS and attack logged-in...
AudioCodes One Voice Operations Center 安全漏洞
AudioCodes One Voice Operations Center AudioCodes OVOC is a web-based voice network management solution from AudioCodes, Inc. A security vulnerability exists in AudioCodes One Voice Operations Center OVOC versions prior to 8.4.582 that stems from a path traversal vulnerability that allows sensiti...
CVE-2024-52882
An issue was discovered in AudioCodes One Voice Operations Center OVOC before 8.4.582. Due to improper neutralization of input via the devices API, an attacker can inject malicious JavaScript code XSS to attack logged-in administrator sessions...
CVE-2024-52882
An issue was discovered in AudioCodes One Voice Operations Center OVOC before 8.4.582. Due to improper neutralization of input via the devices API, an attacker can inject malicious JavaScript code XSS to attack logged-in administrator sessions...
CVE-2024-52884
AudioCodes Mediant Session Border Controller (SBC) before version 7.40A.501.841 is affected by CVE-2024-52884. The issue arises from weak password obfuscation/encryption, enabling an attacker with access to configuration exports (INI) to decrypt passwords. Impact is limited to confidentiality of ...
CVE-2024-48197
Cross Site Scripting vulnerability in Audiocodes MP-202b v.4.4.3 allows a remote attacker to escalate privileges via the login page of the web interface...
CVE-2024-48197
Cross Site Scripting vulnerability in Audiocodes MP-202b v.4.4.3 allows a remote attacker to escalate privileges via the login page of the web interface...
AudioCodes MP-202B 安全漏洞
The AudioCodes MP-202B is an analog VoIP adapter from AudioCodes Israel. It is used to connect to POTS phones or fax machines. A security vulnerability exists in AudioCodes MP-202B version v.4.4.3, which stems from a cross-site scripting vulnerability that allows remote attackers to elevate...