Lucene search
K

16 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2014-2595

Malware in sbrugna...

7.5CVSS7.4AI score0.01684EPSS
Exploits5References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2009-5095

Malware in sbrugna...

8.8CVSS7.8AI score0.01361EPSS
Exploits4References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2021-28268

Malicious code in bioql PyPI...

7.5CVSS7.4AI score0.00799EPSS
Exploits3References4
NVD
NVD
added 2021/10/26 2:15 p.m.18 views

CVE-2021-41158

FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary telecom switches to a software implementation that runs on any commodity hardware. Prior to version 1.10.7, an attacker can perform a SIP digest leak attack against FreeSWITCH and receive the...

7.5CVSS0.00799EPSS
Exploits3References3
Prion
Prion
added 2021/10/26 2:15 p.m.24 views

Design/Logic Flaw

FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary telecom switches to a software implementation that runs on any commodity hardware. Prior to version 1.10.7, an attacker can perform a SIP digest leak attack against FreeSWITCH and receive the...

5CVSS7.4AI score0.00799EPSS
Exploits3References3Affected Software1
AlpineLinux
AlpineLinux
added 2021/10/26 1:55 p.m.45 views

CVE-2021-41158

FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary telecom switches to a software implementation that runs on any commodity hardware. Prior to version 1.10.7, an attacker can perform a SIP digest leak attack against FreeSWITCH and receive the...

7.5CVSS6.6AI score0.00799EPSS
Exploits3
Positive Technologies
Positive Technologies
added 2021/10/26 12:0 a.m.5 views

PT-2021-23138 · Unknown +1 · Freeswitch +1

Name of the Vulnerable Software and Affected Versions: FreeSWITCH versions prior to 1.10.7 Description: The issue allows an attacker to perform a SIP digest leak attack against FreeSWITCH, potentially recovering gateway passwords by exploiting the challenge response of a gateway configured on the...

8.6CVSS6.5AI score0.0352EPSS
Exploits19References30
0day.today
0day.today
added 2021/10/26 12:0 a.m.599 views

FreeSWITCH 1.10.6 SIP Digest Leak Vulnerability

FreeSWITCH versions 1.10.6 and below suffer from a SIP digest leak vulnerability. An attacker can perform a SIP digest leak attack against FreeSWITCH and receive the challenge response of a gateway configured on the FreeSWITCH server. This is done by challenging FreeSWITCH's SIP requests with the...

7.5CVSS6.7AI score0.00799EPSS
Exploits3
Packet Storm
Packet Storm
added 2021/10/25 12:0 a.m.445 views

FreeSWITCH 1.10.6 SIP Digest Leak

FreeSWITCH vulnerable to SIP digest leak for configured gateways - Fixed versions: v1.10.7 - Enable Security Advisory: https://github.com/EnableSecurity/advisories/tree/master/ES2021-05-freeswitch-vulnerable-to-SIP-digest-leak - Vendor Security Advisory:...

0.00799EPSS
Exploits3
NVD
NVD
added 2020/02/12 2:15 p.m.23 views

CVE-2014-2560

The PhonerLite phone before 2.15 provides hashed credentials in a response to an invalid authentication challenge, which makes it easier for remote attackers to obtain access via a brute-force attack, related to a "SIP Digest Leak" issue...

7.5CVSS7.5AI score0.01684EPSS
Exploits5References1
NVD
NVD
added 2020/02/12 2:15 p.m.17 views

CVE-2009-5140

The SIP implementation on the Linksys SPA2102 phone adapter provides hashed credentials in a response to an invalid authentication challenge, which makes it easier for remote attackers to obtain access via a brute-force attack, related to a "SIP Digest Leak" issue...

8.8CVSS8.6AI score0.01361EPSS
Exploits4References2
Prion
Prion
added 2020/02/12 2:15 p.m.17 views

Design/Logic Flaw

The SIP implementation on the Linksys SPA2102 phone adapter provides hashed credentials in a response to an invalid authentication challenge, which makes it easier for remote attackers to obtain access via a brute-force attack, related to a "SIP Digest Leak" issue...

4.3CVSS7.2AI score0.01361EPSS
Exploits4References2
Prion
Prion
added 2020/02/12 2:15 p.m.16 views

Design/Logic Flaw

The PhonerLite phone before 2.15 provides hashed credentials in a response to an invalid authentication challenge, which makes it easier for remote attackers to obtain access via a brute-force attack, related to a "SIP Digest Leak" issue...

4.3CVSS7.1AI score0.01684EPSS
Exploits5References1Affected Software1
Prion
Prion
added 2020/02/12 2:15 p.m.15 views

Design/Logic Flaw

The SIP implementation on the Gizmo5 software phone provides hashed credentials in a response to an invalid authentication challenge, which makes it easier for remote attackers to obtain access via a brute-force attack, related to a "SIP Digest Leak" issue...

4.3CVSS7.2AI score0.00373EPSS
Exploits4References2
Cvelist
Cvelist
added 2020/02/12 1:28 p.m.49 views

CVE-2009-5140

The SIP implementation on the Linksys SPA2102 phone adapter provides hashed credentials in a response to an invalid authentication challenge, which makes it easier for remote attackers to obtain access via a brute-force attack, related to a "SIP Digest Leak" issue...

8.6AI score0.01361EPSS
Exploits4References2
Cvelist
Cvelist
added 2020/02/12 1:28 p.m.44 views

CVE-2014-2560

The PhonerLite phone before 2.15 provides hashed credentials in a response to an invalid authentication challenge, which makes it easier for remote attackers to obtain access via a brute-force attack, related to a "SIP Digest Leak" issue...

7.6AI score0.01684EPSS
Exploits5References1
Rows per page
Query Builder