ГлавнаяУязвимости → CVE-2024-28066
8.8высокая

CVE-2024-28066

Описание

In Unify CP IP Phone firmware 1.10.4.3, Weak Credentials are used (a hardcoded root password).

Затрагиваемое ПО
Mitel 6940w firmwareMitel 6940wMitel 6930w firmwareMitel 6930wMitel 6920w firmwareMitel 6920wMitel 6970 firmwareMitel 6970Mitel 6915 firmwareMitel 6915Mitel 6910 firmwareMitel 6910Mitel 6905 firmwareMitel 6905Mitel Openscape cp710 firmwareMitel Openscape cp710Mitel Openscape cp410 firmwareMitel Openscape cp410Mitel Openscape cp210 firmwareMitel Openscape cp210Mitel Openscape cp110 firmwareMitel Openscape cp110Mitel Openscape cpx10 firmwareMitel Openscape cpx10Mitel Openscape dect firmware
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://syss.dehttps://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2024-008.txthttps://syss.dehttps://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2024-008.txt