exploitDog

GHSA-xr44-2pv4-gw8r

Опубликовано: 25 янв. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

SpliceCom Maximiser Soft PBX v1.5 and before was discovered to utilize a default SSL certificate. This issue can allow attackers to eavesdrop on communications via a man-in-the-middle attack.

SpliceCom Maximiser Soft PBX v1.5 and before was discovered to utilize a default SSL certificate. This issue can allow attackers to eavesdrop on communications via a man-in-the-middle attack.

Ссылки

EPSS

Процентиль: 19%

0.00062

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-295

Связанные уязвимости

CVE-2023-33760

CVSS3: 5.3

nvd

около 2 лет назад

SpliceCom Maximiser Soft PBX v1.5 and before was discovered to utilize a default SSL certificate. This issue can allow attackers to eavesdrop on communications via a man-in-the-middle attack.

EPSS

Процентиль: 19%

0.00062

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-295