Vulnerabilities (CVE)

Filtered by vendor Nec Subscribe

Filtered by product Sv8100

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2019-20033	1 Nec	2 Sv8100, Sv8100 Firmware	2021-07-21	7.5 HIGH	9.8 CRITICAL
On Aspire-derived NEC PBXes, including all versions of SV8100 devices, a set of documented, static login credentials may be used to access the DIM interface.
CVE-2019-20027	1 Nec	8 Sl1100, Sl1100 Firmware, Sl2100 and 5 more	2020-08-04	7.5 HIGH	9.8 CRITICAL
Aspire-derived NEC PBXes, including the SV8100, SV9100, SL1100 and SL2100 with software releases 7.0 or higher contain the possibility if incorrectly configured to allow a blank username and password combination to be entered as a valid, successfully authenticating account.