2 matches found
CVE-2024-39290
CVE-2024-39290 affects AIPHONE IX SYSTEM and IXG SYSTEM. The issue is insufficiently protected credentials (CWE-522), allowing a network-adjacent unauthenticated attacker to obtain sensitive information (username and password) from the address book. Documented impact includes credential disclosur...
JVN#41397971: Multiple vulnerabilities in AIPHONE IX SYSTEM, IXG SYSTEM, and System Support Software
AIPHONE IX SYSTEM is an IP Network Audio-Video Intercom and IXG SYSTEM is an IP-based Residential System. IX SYSTEM, IXG SYSTEM, and System Support Software contain multiple vulnerabilities listed below. OS command injection CWE-78 CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Base Score 8.0...