CVE-2019-14260
CVE-2019-14260 affects the Alcatel-Lucent Enterprise (ALE) 8008 Cloud Edition Deskphone VoIP, firmware 1.50.13. The vulnerability is a command injection in the Change Password interface’s password-change field, allowing an authenticated remote attacker on the same network to trigger OS commands v...