3 matches found
CVE-2024-52882
CVE-2024-52882 affects AudioCodes One Voice Operations Center (OVOC) prior to 8.4.582. The issue stems from improper neutralization of input via the devices API, enabling an attacker to inject malicious JavaScript (XSS) that targets logged-in administrator sessions. Impact is limited to cross-sit...
CVE-2024-52881
AudioCodes One Voice Operations Center (OVOC) prior to version 8.4.582 contains a vulnerability caused by the use of a hard-coded key that allows an attacker to decrypt sensitive data such as passwords stored in the topology file. The issue affects OVOC and can lead to exposure of credentials and...
CVE-2024-52883
The CVE-2024-52883 entry concerns AudioCodes One Voice Operations Center (OVOC) prior to version 8.4.582. The issue is a path traversal vulnerability that allows reading of sensitive data without authentication. Connected sources confirm the affected software and the underlying cause (path traver...