2 matches found
CVE-2018-18871
Missing password verification in the web interface on Gigaset Maxwell Basic VoIP phones with firmware 2.22.7 would allow a remote attacker in the same network as the device to change the admin password without authentication and without knowing the original password...
CVE-2018-18871
CVE-2018-18871 affects Gigaset Maxwell Basic VoIP phones (firmware 2.22.7). The web interface lacks password verification, allowing a remote attacker on the same network to change the admin password without authentication. This is a network-accessible issue with high impact to confidentiality and...