Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CNNVD
CNNVDadded 2022/06/07 12:0 a.m.3 views

3CX Phone 安全漏洞

The 3CX Phone is a software-based private branch exchange. It can be used with SIP standard based IP phones, SIP trunks and VoIP gateways to provide a complete communication solution. A security vulnerability exists in 3CX Phone System version 16.0.0.1570, which stems from the -z aka...

9CVSS7.7AI score0.01529EPSS
Exploits1References3
CNNVD
CNNVDadded 2022/05/06 12:0 a.m.2 views

3CX Phone system(web)management console 安全漏洞

The 3CX Phone is a software-based private branch exchange. It can be used with SIP standard based IP phones, SIP trunks and VoIP gateways to provide a complete communication solution. A security vulnerability exists in 3CX Phone system web management console version 18.0. An attacker could exploi...

9.8CVSS7.9AI score0.06179EPSS
Exploits0References5
CNNVD
CNNVDadded 2022/03/21 12:0 a.m.3 views

3CX Phone System 安全漏洞

The 3CX Phone is a software-based private branch exchange. It can be used with SIP standard based IP phones, SIP trunks and VoIP gateways to provide a complete communication solution. A security vulnerability exists in the 3CX Phone System that stems from the 3CX Phone System storing passwords in...

6.5CVSS5.6AI score0.00786EPSS
Exploits0References5
CNVD
CNVDadded 2019/08/13 12:0 a.m.2 views

3CX Phone Elevation of Privilege Vulnerability

The 3CX Phone is a software-based private branch exchange. It can be used with SIP standard based IP phones, SIP trunks and VoIP gateways to provide a complete communication solution. A security vulnerability exists in 3CX Phone version 15 Windows that originates from the program assigning insecu...

7.8CVSS6.8AI score0.00369EPSS
Exploits1References1
OSV
OSVadded 2019/08/12 12:15 a.m.1 views

CVE-2019-14935

3CX Phone 15 on Windows has insecure permissions on the "%PROGRAMDATA%\3CXPhone for Windows\PhoneApp" installation directory, allowing Full Control access for Everyone, and leading to privilege escalation because of a StartUp link...

7.8CVSS7.1AI score0.00369EPSS
Exploits1References1
OSV
OSVadded 2019/08/08 2:15 p.m.2 views

CVE-2019-13176

An issue was discovered in the 3CX Phone system web management console 12.5.44178.1002 through 12.5 SP2. The Content.MainForm.wgx component is affected by XXE via a crafted XML document in POST data. There is potential to use this for SSRF reading local files, outbound HTTP, and outbound DNS...

7.5CVSS7.1AI score0.02461EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2019/08/08 2:15 p.m.2 views

CVE-2019-13176

An issue was discovered in the 3CX Phone system web management console 12.5.44178.1002 through 12.5 SP2. The Content.MainForm.wgx component is affected by XXE via a crafted XML document in POST data. There is potential to use this for SSRF reading local files, outbound HTTP, and outbound DNS...

7.5CVSS5.5AI score0.02461EPSS
Exploits1References3
CNVD
CNVDadded 2017/10/17 12:0 a.m.3 views

3CX Phone System Directory Traversal Vulnerability

3CX Phone System is a unified communications solution that includes web conferencing, IP telephony, and cell phone clients.Management Console is one of the management console programs. A directory traversal vulnerability exists in Management Console in 3CX Phone System version 15.5.3554.1. An...

6.5CVSS6.6AI score0.06168EPSS
Exploits4References1
Rows per page
Query Builder