Vulnerability in Snom Snom_300
CVE-2009-1048
The web interface on the snom VoIP phones snom 300, snom 320, snom 360, snom 370, and snom 820 with firmware 6.5 before 6.5.20, 7.1 before 7.1.39, and 7.3 before 7.3.14 allows remote attackers to bypass authentication, and reconfigure the…
EPSS: 0.064 (92.8th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 9.8 (Critical). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.
Affected products
Weakness classification (CWE)
References
- cve@mitre.org (x_refsource_MISC, Broken Link)
- cve@mitre.org (x_refsource_SECUNIA, Broken Link, Vendor Advisory, third-party-advisory)
- cve@mitre.org (mailing-list, x_refsource_BUGTRAQ, VDB Entry, Third Party Advisory, Broken Link)
- cve@mitre.org (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_XF)
Frequently asked questions
- What is CVE-2009-1048?
- CVE-2009-1048 is a critical-severity vulnerability in Snom Snom_300, classified under Authentication Bypass by Spoofing. CVSS score: 9.8/10. Published 2009-08-14.
- How severe is CVE-2009-1048?
- Critical severity. CVSS v3 base score is 9.8 out of 10.