PT-2022-12217 · Nec · Univerge Dt 830+5
Luke Ketteridge
·
Published
2022-02-01
·
Updated
2023-08-08
·
CVE-2021-44746
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
UNIVERGE DT 820 versions 3.2.7.0 and prior
UNIVERGE DT 830 versions 5.2.7.0 and prior
UNIVERGE DT 930 versions 2.4.0.0 and prior
IP Phone Manager versions 8.9.1 and prior
Data Maintenance Tool for DT900 Series versions 5.3.0.0 and prior
Data Maintenance Tool for DT800 Series versions 4.2.0.0 and prior
Description
The issue allows a remote attacker who can access the internal network to obtain configuration information.
Recommendations
For UNIVERGE DT 820 versions 3.2.7.0 and prior, update to a version later than 3.2.7.0.
For UNIVERGE DT 830 versions 5.2.7.0 and prior, update to a version later than 5.2.7.0.
For UNIVERGE DT 930 versions 2.4.0.0 and prior, update to a version later than 2.4.0.0.
For IP Phone Manager versions 8.9.1 and prior, update to a version later than 8.9.1.
For Data Maintenance Tool for DT900 Series versions 5.3.0.0 and prior, update to a version later than 5.3.0.0.
For Data Maintenance Tool for DT800 Series versions 4.2.0.0 and prior, update to a version later than 4.2.0.0.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Data Maintenance Tool For Dt800 Series
Data Maintenance Tool For Dt900 Series
Ip Phone Manager
Univerge Dt 820
Univerge Dt 830
Univerge Dt 930