2 matches found
CVE-2019-5280
The CVE-2019-5280 issue affects Huawei CloudLink Phone 7900 (V600R019C10) SIP TLS module. The root cause is insufficient verification of TLS server certificate parameters, enabling potential man-in-the-middle attacks that can cause abnormal phone registrations and affect IP phone availability. Pu...
Security Advisory - TLS Certificate Verification Vulnerability in Huawei 7900 IP Phones
There is a TLS certificate verification vulnerability in the SIP TLS module of Huawei 7900 IP Phones. Due to insufficient verification of specific parameters of the TLS server certificate, attackers can perform man-in-the-middle attacks, leading to the affected phones registered abnormally,...