Vulnerability CVE-2023-22956
Published: 2023-08-11

Description:
An issue was discovered on AudioCodes VoIP desk phones through 3.4.4.1000. Due to the use of a hard-coded cryptographic key, an attacker is able to decrypt encrypted configuration files and retrieve sensitive information.

See advisories in our WLB2 database:
Topic
Author
Date
High
AudioCodes VoIP Phones Hardcoded Key
Moritz Abrell
16.08.2023

Type:

CWE-321

 (Use of Hard-coded Cryptographic Key)

 References:
https://syss.de
https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2022-054.txt
Copyright 2024, cxsecurity.com

 

Back to Top