← voltar
CVE-2024-31967

CVE-2024-31967

CVSS 9.1 CRITICALEPSS 0.5%CWE-284
Vexday Risk Score
28Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 9.1EPSS 0.5%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
02 mai 2024Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
A vulnerability on Mitel 6800 Series and 6900 Series SIP Phones through 6.3 SP3 HF4, 6900w Series SIP Phone through 6.3.3, and 6970 Conference Unit through 5.1.1 SP8 allows an unauthenticated attacker to conduct an unauthorized access attack due to improper access control. A successful exploit could allow an attacker to gain unauthorized access to user information or the system configuration.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Produtos afetados
n/a · n/a