exploitDog

CVE-2024-52884

Опубликовано: 07 фев. 2025

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

An issue was discovered in AudioCodes Mediant Session Border Controller (SBC) before 7.40A.501.841. Due to the use of weak password obfuscation/encryption, an attacker with access to configuration exports (INI) is able to decrypt the passwords.

Ссылки

https://www.audiocodes.com/solutions-products/products/session-border-controllers-sbcs
Product
https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2024-078.txt
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:audiocodes:mediant_session_border_controller:*:*:*:*:*:*:*:*

Версия до 7.40a.501.841 (исключая)

EPSS

Процентиль: 18%

0.00056

Низкий

7.5 High

CVSS3

Дефекты

CWE-327

Связанные уязвимости

GHSA-v6vm-3qpv-vj6x

CVSS3: 7.5

github

около 1 года назад

An issue was discovered in AudioCodes Mediant Session Border Controller (SBC) before 7.40A.501.841. Due to the use of weak password obfuscation/encryption, an attacker with access to configuration exports (INI) is able to decrypt the passwords.

EPSS

Процентиль: 18%

0.00056

Низкий

7.5 High

CVSS3

Дефекты

CWE-327