Unknown · Phonerlite · CVE-2014-2560
**Name of the Vulnerable Software and Affected Versions**
PhonerLite versions prior to 2.15
**Description**
The issue allows remote attackers to obtain access via a brute-force attack due to the provision of hashed credentials in response to an invalid authentication challenge, related to a "SIP Digest Leak" issue.
**Recommendations**
For versions prior to 2.15, update to version 2.15 or later to resolve the issue. As a temporary workaround, consider restricting access to the SIP authentication mechanism to minimize the risk of exploitation.