exploitDog

CVE-2025-3927

Опубликовано: 02 мая 2025

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

Digigram's PYKO-OUT audio-over-IP (AoIP) web-server does not require a password by default, allowing any attacker with the target IP address to connect and compromise the device, potentially pivoting to connected network or hardware devices.

Ссылки

https://www.digigram.com/download/pyko-out-user-manual-en-jan-2019/
Product
https://www.kb.cert.org/vuls/id/360686
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:digigram:pyko-out:-:*:*:*:*:*:*:*

EPSS

Процентиль: 25%

0.00088

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-862

Связанные уязвимости

GHSA-qph7-xc8r-fqmj

CVSS3: 9.8

github

9 месяцев назад

Digigram's PYKO-OUT audio-over-IP (AoIP) web-server does not require a password by default, allowing any attacker with the target IP address to connect and compromise the device, potentially pivoting to connected network or hardware devices.

EPSS

Процентиль: 25%

0.00088

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-862