Vulnerability in Pingtel Xpressa
CVE-2002-0674
Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 1.2.7.4 does not "time out" an inactive administrator session, which could allow other users to perform administrator actions if the administrator does not explicitly end the auth…
EPSS: 0.004 (29.6th percentile) — read the EPSS interpretation.
Affected products
- Pingtel Xpressa — versions 1.2.5, 1.2.7.4
- N/a — versions n/a
References
- cve@mitre.org (x_refsource_CONFIRM)
- cve@mitre.org (x_refsource_ATSTAKE, vendor-advisory)
- cve@mitre.org (vdb-entry, x_refsource_BID)
- cve@mitre.org (vdb-entry, x_refsource_XF)