Описание
SpliceCom Maximiser Soft PBX v1.5 and before was discovered to utilize a default SSL certificate. This issue can allow attackers to eavesdrop on communications via a man-in-the-middle attack.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.5 (включая)
cpe:2.3:a:splicecom:maximiser_soft_pbx:*:*:*:*:*:*:*:*
EPSS
Процентиль: 19%
0.00062
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-295
CWE-295
Связанные уязвимости
CVSS3: 5.3
github
около 2 лет назад
SpliceCom Maximiser Soft PBX v1.5 and before was discovered to utilize a default SSL certificate. This issue can allow attackers to eavesdrop on communications via a man-in-the-middle attack.
EPSS
Процентиль: 19%
0.00062
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-295
CWE-295