Vulnerabilities > CVE-2021-44746 - Unspecified vulnerability in NEC products

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

nec

NVD

Published: 2022-02-01

Updated: 2023-08-08

Summary

UNIVERGE DT 820 V3.2.7.0 and prior, UNIVERGE DT 830 V5.2.7.0 and prior, UNIVERGE DT 930 V2.4.0.0 and prior, IP Phone Manager V8.9.1 and prior, Data Maintenance Tool for DT900 Series V5.3.0.0 and prior, Data Maintenance Tool for DT800 Series V4.2.0.0 and prior allows a remote attacker who can access to the internal network, the configuration information may be obtained.

Vulnerable Configurations

Part	Description	Count
OS	Nec NEC Univerge Dt830 Firmware * NEC Univerge Dt820 Firmware * NEC Univerge Dt930 Firmware *	3
Hardware	Nec NEC Univerge Dt830 - NEC Univerge Dt820 - NEC Univerge Dt930 -	3
Application	Nec NEC Univerge Dt900 Data Maintenance Tool * NEC Univerge Dt800 Data Maintenance Tool * NEC Univerge IP Phone Manager *	3

References

https://www.necplatforms.co.jp/en/product/security_adv/211217.html