unify openstage sip vulnerabilities and exploits

(subscribe to this query)

4.3

CVSSv2

OpenStage 60 and OpenScape Desk Phone IP 55G SIP V3, OpenStage 15, 20E, 20 and 40 and OpenScape Desk Phone IP 35G SIP V3, OpenScape Desk Phone IP 35G Eco SIP V3, OpenStage 60 and OpenScape Desk Phone IP 55G HFA V3, OpenStage 15, 20E, 20, and 40 and OpenScape Desk Phone IP 35G HFA...

Unify Openstage 60 Firmware 3.0 Unify Openscape Desk Phone Ip 55g Sip Firmware 3.0 Unify Openstage 15 Firmware 3.0 Unify Openstage 20e Firmware 3.0 Unify Openstage 20 Firmware 3.0 Unify Openstage 40 Firmware 3.0 Unify Openscape Desk Phone Ip 35g Sip Firmware 3.0 Unify Openscape Desk Phone Ip 35g Eco Sip Firmware 3.0 Unify Openscape Desk Phone Ip 55g Hfa Firmware 3.0 Unify Openscape Desk Phone Ip 35g Hfa Firmware 3.0

1 Article

6.8

CVSSv2

The web-based management (WBM) interface in Unify (former Siemens) OpenStage SIP and OpenScape Desk Phone IP V3 devices before R3.32.0 generates session cookies with insufficient entropy, which makes it easier for remote malicious users to hijack sessions via a brute-force attack...

Unify Openstage Sip Unify Openscape Desk Phone Ip Sip

4

CVSSv2

CRLF injection vulnerability in the web-based management (WBM) interface in Unify (former Siemens) OpenStage SIP and OpenScape Desk Phone IP V3 devices before R3.32.0 allows remote authenticated users to modify the root password and consequently access the debug port using the se...

Unify Openstage Sip Unify Openscape Desk Phone Ip Sip

8.5

CVSSv2

Unify (former Siemens) OpenStage SIP and OpenScape Desk Phone IP V3 devices before R3.32.0 allow remote malicious users to gain super-user privileges by leveraging SSH access and incorrect ownership of (1) ConfigureCoreFile.sh, (2) Traceroute.sh, (3) apps.sh, (4) conversion_java2...

Unify Openstage Sip Unify Openscape Desk Phone Ip Sip

10

CVSSv2

Unify OpenStage / OpenScape Desk Phone IP before V3 R3.11.0 SIP has an OS command injection vulnerability in the web based management interface

Atos Openstage 80 Firmware V3 Atos Openstage 80 G Firmware V3 Atos Openstage 60 G Firmware V3 Atos Openstage 60 Firmware V3 Atos Openstage 40 Firmware V3 Atos Openstage 40 G Firmware V3 Atos Openstage 20 E Firmware V3 Atos Openstage 20 Firmware V3 Atos Openstage 20 G Firmware V3 Atos Openstage 15 Firmware V3 Atos Openstage 15 G Firmware V3 Atos Openstage 5 Firmware V3 Atos Openscape Desk Phone Ip 35g Firmware V3 Atos Openscape Desk Phone Ip 35g Eco Firmware V3 Atos Openscape Desk Phone Ip 55g Firmware V3

10

CVSSv2

Unify OpenStage/OpenScape Desk Phone IP SIP before V3 R3.11.0 has an authentication bypass in the default mode of the Workpoint Interface

Atos Openstage 80 Firmware V3 Atos Openstage 80 G Firmware V3 Atos Openstage 60 G Firmware V3 Atos Openstage 60 Firmware V3 Atos Openstage 40 Firmware V3 Atos Openstage 40 G Firmware V3 Atos Openstage 20 E Firmware V3 Atos Openstage 20 Firmware V3 Atos Openstage 20 G Firmware V3 Atos Openstage 15 Firmware V3 Atos Openstage 15 G Firmware V3 Atos Openscape Desk Phone Ip 35g Firmware V3 Atos Openscape Desk Phone Ip 35g Eco Firmware V3 Atos Openscape Desk Phone Ip 55g Firmware V3

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook