Vulnerabilities > CVE-2023-0348 - Unspecified vulnerability in Akuvox E11 Firmware

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

network

low complexity

akuvox

NVD

Published: 2023-03-13

Updated: 2023-11-07

Summary

Akuvox E11 allows direct SIP calls. No access control is enforced by the SIP servers, which could allow an attacker to contact any device within Akuvox to call any other device.

Vulnerable Configurations

Part	Description	Count
OS	Akuvox Akuvox E11 Firmware -	1
Hardware	Akuvox Akuvox E11 -	1

References

https://www.cisa.gov/news-events/ics-advisories/icsa-23-068-01