Description

UNIVERGE Aspire series PBX (UNIVERGE Aspire WX from 1.00 to 3.51, UNIVERGE Aspire UX from 1.00 to 9.70, UNIVERGE SV9100 from 1.00 to 10.70, and SL2100 from 1.00 to 3.00) allows a remote authenticated attacker to cause system down and a denial of service (DoS) condition by sending a specially crafted command.

Related CPE's

o

necplatforms

univerge_aspire_wx_firmware

Vulnerable

h

necplatforms

univerge_aspire_wx

-

o

necplatforms

univerge_aspire_ux_firmware

Vulnerable

h

necplatforms

univerge_aspire_ux

-

o

necplatforms

univerge_sv9100_firmware

Vulnerable

h

necplatforms

univerge_sv9100

-

o

necplatforms

sl2100_firmware

Vulnerable

h

necplatforms

sl2100

-

References

https://jvn.jp/en/jp/JVN12737530/index.html

Third Party Advisory

https://www.necplatforms.co.jp/en/press/security_adv.html

Vendor Advisory

Weaknesses

[email protected]

Primary
NVD-CWE-noinfo

CVSS impact metrics

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L

3.1 · Low

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2021-03-26T09:15:11.950

4 years ago

Last modified

2021-04-02T12:27:34.727

4 years ago