CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

RedhatCVE•added 2026/01/09 10:7 a.m.•6 views

CVE-2019-20029

An exploitable privilege escalation vulnerability exists in the WebPro functionality of Aspire-derived NEC PBXes, including all versions of SV8100, SV9100, SL1100 and SL2100 devices. A specially crafted HTTP POST can cause privilege escalation resulting in a higher privileged account, including a...

8.8CVSS7.2AI score0.01619EPSS

Exploits0References1

NVD•added 2020/07/29 6:15 p.m.•9 views

CVE-2019-20029

8.8CVSS8.8AI score0.01619EPSS

Exploits0References1

NVD•added 2020/07/29 6:15 p.m.•7 views

CVE-2019-20033

On Aspire-derived NEC PBXes, including all versions of SV8100 devices, a set of documented, static login credentials may be used to access the DIM interface...

9.8CVSS9.4AI score0.00363EPSS

Exploits0References1

NVD•added 2020/07/29 6:15 p.m.•9 views

CVE-2019-20027

Aspire-derived NEC PBXes, including the SV8100, SV9100, SL1100 and SL2100 with software releases 7.0 or higher contain the possibility if incorrectly configured to allow a blank username and password combination to be entered as a valid, successfully authenticating account...

9.8CVSS9.5AI score0.0035EPSS

Exploits0References1

Prion•added 2020/07/29 6:15 p.m.•17 views

Default credentials

7.5CVSS9.4AI score0.0035EPSS

Exploits0References1Affected Software4

Prion•added 2020/07/29 6:15 p.m.•15 views

Design/Logic Flaw

An attacker with access to an InMail voicemail box equipped with the find me/follow me feature on Aspire-derived NEC PBXes, including all versions of SV8100, SV9100, SL1100 and SL2100 devices, may access the system's administration modem...

4CVSS6.5AI score0.00203EPSS

Exploits0References1

Prion•added 2020/07/29 6:15 p.m.•11 views

Privilege escalation

6.5CVSS8.7AI score0.01619EPSS

Exploits0References1