CVE-2019-5280

The SIP TLS module of Huawei CloudLink Phone 7900 with V600R019C10 has a TLS certificate verification vulnerability. Due to insufficient verification of specific parameters of the TLS server certificate, attackers can perform man-in-the-middle attacks, leading to the affected phones registered...

CVE-2019-5280

The CVE-2019-5280 issue affects Huawei CloudLink Phone 7900 (V600R019C10) SIP TLS module. The root cause is insufficient verification of TLS server certificate parameters, enabling potential man-in-the-middle attacks that can cause abnormal phone registrations and affect IP phone availability. Pu...

Huawei CloudLink Phone 7900 SIP TLS Module TLS Certificate Validation Vulnerability

Huawei CloudLink Phone 7900 is an IP phone from Huawei, China.SIP TLS is one of the transport layer security modules. A security vulnerability exists in the SIP TLS module in the Huawei CloudLink Phone 7900 V600R019C10 version, which stems from the program not adequately validating the parameters...

Password Bypass Vulnerability in Yoosee APP for Android

Yoosee is a free APP customized for the new generation of smart home products by Shenzhen GW Times, which adopts the advanced Cloudlink P2P network transmission technology. There is a password bypass vulnerability in the Android version of Yoosee APP, which can be exploited by an attacker to...