Vulnerability in Pingtel Xpressa

CVE-2002-1935

Pingtel Xpressa 1.2.5 through 2.0.1 uses predictable (1) Call-ID, (2) CSeq, and (3) "To" and "From" SIP URL values in a Session Identification Protocol (SIP) request, which allows remote attackers to avoid registering with the SIP registra…

EPSS: 0.014 (68.0th percentile) — read the EPSS interpretation.

Affected products

References