Lucene search
K

1293 matches found

ptsecurity
ptsecurity
added 2025/06/11 12:0 a.m.4 views

PT-2025-26164 · D Link · D-Link Dph-400S/Se Voip Phone

Name of the Vulnerable Software and Affected Versions: D-Link DPH-400S/SE VoIP Phone version 1.01 Description: The issue concerns hardcoded provisioning variables, including PROVIS USER PASSWORD, which may expose sensitive user credentials. An attacker with access to the firmware image can extrac...

10CVSS6.1AI score0.00489EPSS
Exploits1References12
redhatcve
redhatcve
added 2025/05/23 2:44 a.m.6 views

CVE-2023-30024

The MagicJack device, a VoIP solution for internet phone calls, contains a hidden NAND flash memory partition allowing unauthorized read/write access. Attackers can exploit this by replacing the original software with a malicious version, leading to ransomware deployment on the host computer...

6.6CVSS6.8AI score0.00472EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 10:34 p.m.14 views

CVE-2022-44929

An access control issue in D-Link DVG-G5402SP GE1.03 allows unauthenticated attackers to escalate privileges via arbitrarily editing VoIP SIB profiles...

9.8CVSS7.2AI score0.01115EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 9:59 p.m.11 views

CVE-2022-44236

Beijing Zed-3 Technologies Co.,Ltd VoIP simpliclty ASG 8.5.0.17807 20181130-16:12 has a Weak password vulnerability...

9.8CVSS7.1AI score0.00779EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 9:58 p.m.10 views

CVE-2022-44235

Beijing Zed-3 Technologies Co.,Ltd VoIP simpliclty ASG 8.5.0.17807 20181130-16:12 is vulnerable to Cross Site Scripting XSS...

6.1CVSS6.5AI score0.00446EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 4:33 p.m.8 views

CVE-2020-25217

Grandstream GRP261x VoIP phone running firmware version 1.0.3.6 Base allows Command Injection as root in its administrative web interface...

9CVSS7.5AI score0.02382EPSS
Exploits0
redhatcve
redhatcve
added 2025/05/22 3:51 p.m.6 views

CVE-2020-25218

Grandstream GRP261x VoIP phone running firmware version 1.0.3.6 Base allow Authentication Bypass in its administrative web interface...

10CVSS7.2AI score0.01822EPSS
Exploits0
redhatcve
redhatcve
added 2025/05/22 8:48 a.m.6 views

CVE-2019-6969

The web interface of the D-Link DVA-5592 20180823 is vulnerable to an authentication bypass that allows an unauthenticated user to have access to sensitive information such as the Wi-Fi password and the phone number if VoIP is in use...

7.5CVSS7.1AI score0.0258EPSS
Exploits2References1
redhatcve
redhatcve
added 2025/05/22 6:30 a.m.2 views

CVE-2019-3568

A buffer overflow vulnerability in WhatsApp VOIP stack allowed remote code execution via specially crafted series of RTCP packets sent to a target phone number. The issue affects WhatsApp for Android prior to v2.19.134, WhatsApp Business for Android prior to v2.19.44, WhatsApp for iOS prior to...

9.8CVSS8AI score0.39166EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/22 3:19 a.m.11 views

CVE-2018-16220

Cross Site Scripting in different input fields domain field and personal settings in AudioCodes 405HD VoIP phone with firmware 2.2.12 allows an attacker local or remote to inject JavaScript into the web interface of the device by manipulating the phone book entries or manipulating the domain name...

6.1CVSS6.6AI score0.00802EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/21 9:17 p.m.7 views

CVE-2007-5556

Unspecified vulnerability in the Avaya VoIP Handset allows remote attackers to cause a denial of service reboot via crafted packets. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is from a well-known researcher, it is being...

7.8CVSS7.1AI score0.01465EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/21 8:9 p.m.10 views

CVE-2005-0745

UTStarcom iAN-02EX VoIP Analog Terminal Adaptor ATA allows local users to bypass ATA access restrictions by dialing "26845" and causing a device reset...

4.6CVSS6.7AI score0.00398EPSS
Exploits1References1
fedora
fedora
added 2025/04/11 6:32 p.m.16 views

[SECURITY] Fedora 42 Update: matrix-synapse-1.127.1-1.fc42

Matrix is an ambitious new ecosystem for open federated Instant Messaging and VoIP. Synapse is a reference "homeserver" implementation of Matrix from the core development team at matrix.org, written in Python/Twisted. It is intended to showcase the concept of Matrix and let folks see the spec in...

7.5CVSS6.8AI score0.01157EPSS
Exploits0
fedora
fedora
added 2025/04/07 1:25 a.m.11 views

[SECURITY] Fedora 41 Update: matrix-synapse-1.118.0-4.fc41

Matrix is an ambitious new ecosystem for open federated Instant Messaging and VoIP. Synapse is a reference "homeserver" implementation of Matrix from the core development team at matrix.org, written in Python/Twisted. It is intended to showcase the concept of Matrix and let folks see the spec in...

7.2AI score
Exploits0
fedora
fedora
added 2025/04/05 1:57 a.m.13 views

[SECURITY] Fedora 40 Update: matrix-synapse-1.111.1-4.fc40

Matrix is an ambitious new ecosystem for open federated Instant Messaging and VoIP. Synapse is a reference "homeserver" implementation of Matrix from the core development team at matrix.org, written in Python/Twisted. It is intended to showcase the concept of Matrix and let folks see the spec in...

7.2AI score
Exploits0
redhatcve
redhatcve
added 2025/04/03 12:37 a.m.19 views

CVE-2003-20001

An issue was discovered on Mitel ICP VoIP 3100 devices. When a remote user attempts to log in via TELNET during the login wait time and an external call comes in, the system incorrectly divulges information about the call and any SMDR records generated by the system. The information provided...

5.6CVSS7AI score0.01512EPSS
Exploits0References1
nvd
nvd
added 2025/04/01 9:15 p.m.14 views

CVE-2003-20001

An issue was discovered on Mitel ICP VoIP 3100 devices. When a remote user attempts to log in via TELNET during the login wait time and an external call comes in, the system incorrectly divulges information about the call and any SMDR records generated by the system. The information provided...

5.6CVSS0.01512EPSS
Exploits0References4
cvelist
cvelist
added 2025/04/01 12:0 a.m.13 views

CVE-2003-20001

An issue was discovered on Mitel ICP VoIP 3100 devices. When a remote user attempts to log in via TELNET during the login wait time and an external call comes in, the system incorrectly divulges information about the call and any SMDR records generated by the system. The information provided...

0.01512EPSS
Exploits0References4
ptsecurity
ptsecurity
added 2025/04/01 12:0 a.m.8 views

PT-2025-14386 · Undefined · Undefined

An issue was discovered on Mitel ICP VoIP 3100 devices. When a remote user attempts to log in via TELNET during the login wait time and an external call comes in, the system incorrectly divulges information about the call and any SMDR records generated by the system. The information provided...

5.6CVSS6.2AI score0.01512EPSS
Exploits0References5
vulnrichment
vulnrichment
added 2025/04/01 12:0 a.m.6 views

CVE-2003-20001

An issue was discovered on Mitel ICP VoIP 3100 devices. When a remote user attempts to log in via TELNET during the login wait time and an external call comes in, the system incorrectly divulges information about the call and any SMDR records generated by the system. The information provided...

7AI score0.01512EPSS
Exploits0References4
Rows per page
Query Builder