Vulnerabilities > NEC > Um4730 Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2020-07-29 CVE-2019-20031 Improper Restriction of Excessive Authentication Attempts vulnerability in NEC Um4730 Firmware and Um8000 Firmware
NEC UM8000, UM4730 and prior non-InMail voicemail systems with all known software versions may permit an infinite number of login attempts in the telephone user interface (TUI), effectively allowing brute force attacks.
network
low complexity
nec CWE-307
critical
9.1