4 matches found
CVE-2014-2650
Unify OpenStage / OpenScape Desk Phone IP before V3 R3.11.0 SIP has an OS command injection vulnerability in the web based management interface...
CVE-2014-2650
Unify OpenStage / OpenScape Desk Phone IP before V3 R3.11.0 SIP has an OS command injection vulnerability in the web based management interface...
CVE-2014-2650
The CVE concerns Unify OpenStage / OpenScape Desk Phone IP (pre-V3 R3.11.0) where the web-based management interface is vulnerable to OS command injection. Root cause is improper handling of input in the management UI, enabling an attacker to execute arbitrary commands on the device. CVSS data in...
Design/Logic Flaw
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-2650. Reason: This candidate is a reservation duplicate of CVE-2014-2650. Notes: All CVE users should reference CVE-2014-2650 instead of this candidate. All references and descriptions in this candidate have been removed to...