CVE-2019-18863

Published: 02/03/2020 Updated: 21/07/2021

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 5.9 | Impact Score: 3.6 | Exploitability Score: 2.2

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N

A key length vulnerability in the implementation of the SRTP 128-bit key on Mitel 6800 and 6900 SIP series phones, versions 5.1.0.2051 SP2 and previous versions, could allow an malicious user to launch a man-in-the-middle attack when SRTP is used in a call. A successful exploit may allow the malicious user to intercept sensitive information.

Vulnerable Product	Search on Vulmon	Subscribe to Product
mitel 6863i firmware
mitel 6863i firmware 5.1.0.2051
mitel 6865i firmware
mitel 6865i firmware 5.1.0.2051
mitel 6867i firmware
mitel 6867i firmware 5.1.0.2051
mitel 6869i firmware
mitel 6869i firmware 5.1.0.2051
mitel 6873i firmware
mitel 6873i firmware 5.1.0.2051
mitel 6920 firmware
mitel 6920 firmware 5.1.0.2051
mitel 6930 firmware
mitel 6930 firmware 5.1.0.2051
mitel 6940 firmware
mitel 6940 firmware 5.1.0.2051

CWE-326 https://www.mitel.com/support/security-advisories https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-19-0006 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2019-18863

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect