Vulnerability CVE-2022-29854

Vulnerability CVE-2022-29854

Published: 2022-05-13

Description:

A vulnerability in Mitel 6900 Series IP (MiNet) phones excluding 6970, versions 1.8 (1.8.0.12) and earlier, could allow a unauthenticated attacker with physical access to the phone to gain root access due to insufficient access control for test functionality during system startup. A successful exploit could allow access to sensitive information and code execution.

See advisories in our WLB2 database:

	Topic	Author	Date
Med.	Mitel 6800/6900 Series SIP Phones Backdoor Access	Moritz Abrell	20.06.2022

Type:

CWE-912

References:

https://www.mitel.com/support/security-advisories

https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-22-0003

Copyright 2024, cxsecurity.com