exploitDog

GHSA-rhr8-8xj2-r4pc

Опубликовано: 25 июн. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 4.9

Описание

Missing access control in the backup system of Telesoft VitalPBX before 3.2.1 allows attackers to access the PJSIP and SIP extension credentials, cryptographic keys and voicemails files via unspecified vectors.

Missing access control in the backup system of Telesoft VitalPBX before 3.2.1 allows attackers to access the PJSIP and SIP extension credentials, cryptographic keys and voicemails files via unspecified vectors.

Ссылки

EPSS

Процентиль: 56%

0.00335

Низкий

4.9 Medium

CVSS3

CVE ID

Дефекты

CWE-862

Связанные уязвимости

CVE-2022-29330

CVSS3: 4.9

nvd

больше 3 лет назад

Missing access control in the backup system of Telesoft VitalPBX before 3.2.1 allows attackers to access the PJSIP and SIP extension credentials, cryptographic keys and voicemails files via unspecified vectors.

EPSS

Процентиль: 56%

0.00335

Низкий

4.9 Medium

CVSS3

CVE ID

Дефекты

CWE-862