Shawn Merdinger

**Name of the Vulnerable Software and Affected Versions** Wind River VxWorks versions 6.x, 5.x, and earlier **Description** The issue allows remote attackers to read or modify arbitrary memory locations, perform function calls, or manage tasks via requests to UDP port 17185. This is related to a previous issue. **Recommendations** For Wind River VxWorks versions 6.x, 5.x, and earlier, restrict access to UDP port 17185 to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** S2 Security NetBox versions 2.5, 3.3, 4.0 **Description** The issue allows remote attackers to download sensitive information, including node logs, photographs of persons, and backup files, via unspecified HTTP requests due to insufficient access control. This is because sensitive information is stored under the web root. **Recommendations** For version 2.5, 3.3, and 4.0, restrict access to sensitive information stored under the web root to prevent unauthorized downloads. As a temporary workaround, consider restricting access to the web root until a proper fix is applied. Avoid using HTTP requests that could lead to the exposure of sensitive information until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** S2 Security Linear eMerge Access Control System versions 2.5.x **Description** The issue allows remote attackers to cause a denial of service, resulting in a configuration reset, by sending a request to a crafted URI. **Recommendations** For versions 2.5.x, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Grandstream GXP-2000 VoIP Desktop Phone version 1.1.0.5 **Description** The issue allows remote attackers to cause a denial of service, resulting in the device hanging or rebooting, by sending a large amount of ASCII data to certain UDP ports. The affected ports include "5060/UDP", "5062/UDP", "5064/UDP", "5066/UDP", "9876/UDP", and "26789/UDP". **Recommendations** For Grandstream GXP-2000 VoIP Desktop Phone version 1.1.0.5, consider restricting access to the mentioned UDP ports as a temporary workaround until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Hitachi IP5000 VOIP WIFI Phone version 1.5.6 **Description** The issue allows remote attackers to modify configuration or access sensitive information, potentially causing a denial of service. This is due to the inability to disable access to certain protocols. **Recommendations** For Hitachi IP5000 VOIP WIFI Phone version 1.5.6, consider restricting access to TCP port 3390 and disabling SNMP to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Hitachi IP5000 VOIP WIFI Phone version 1.5.6 **Description** The issue concerns a hard-coded administrator password, which is set to `0000`. This allows attackers who have physical access to the device to obtain sensitive information and modify the phone's configuration. **Recommendations** For Hitachi IP5000 VOIP WIFI Phone version 1.5.6, consider changing the administrator password to a strong and unique value as soon as possible to prevent unauthorized access. As a temporary workaround, restrict physical access to the device until a more permanent solution is available.

**Name of the Vulnerable Software and Affected Versions** Zyxel P2000W Version 1 VOIP WIFI Phone version Wj.00.10 **Description** The issue is related to the use of hardcoded IP addresses for DNS servers, which could allow remote attackers to cause a denial of service or hijack Zyxel phones by attacking or spoofing the hardcoded DNS servers. **Recommendations** For Zyxel P2000W Version 1 VOIP WIFI Phone version Wj.00.10, consider configuring the device to use alternative DNS servers to minimize the risk of exploitation. As a temporary workaround, restrict access to the device's DNS settings to prevent potential hijacking. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Zyxel P2000W Version 1 VOIP WIFI Phone version Wj.00.10 **Description** The issue allows remote attackers to obtain sensitive information and possibly cause a denial of service via a direct connection to "UDP port 9090", which is undocumented and does not require authentication. **Recommendations** For Zyxel P2000W Version 1 VOIP WIFI Phone version Wj.00.10, restrict access to UDP port 9090 to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Hitachi IP5000 VOIP WIFI Phone version 1.5.6 **Description** The default index page in the HTTP server lists sensitive information, including software versions. **Recommendations** For Hitachi IP5000 VOIP WIFI Phone version 1.5.6, consider restricting access to the HTTP server or modifying the default index page to avoid disclosing sensitive information.

**Name of the Vulnerable Software and Affected Versions** Hitachi IP5000 VOIP WIFI Phone version 1.5.6 **Description** The default configuration of the HTTP server does not require authentication for sensitive configuration pages, allowing remote attackers to modify configuration. **Recommendations** For Hitachi IP5000 VOIP WIFI Phone version 1.5.6, consider configuring the HTTP server to require authentication for sensitive configuration pages to prevent unauthorized modifications.

**Name of the Vulnerable Software and Affected Versions** Hitachi IP5000 VOIP WIFI Phone version 1.5.6 **Description** The issue allows remote attackers to gain read or write access to system configuration using arbitrary SNMP credentials. This is related to the SNMP v1/v2c daemon. **Recommendations** For version 1.5.6, consider restricting access to the SNMP service until a patch is available. As a temporary workaround, limit the use of SNMP v1/v2c to minimize the risk of exploitation.