Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2020-13617

The Web UI component of Mitel MiVoice 6800 and 6900 series SIP Phones with firmware before 5.1.0.SP5 could allow an unauthenticated attacker to expose sensitive information due to improper memory handling during failed login attempts.

Published

2020-08-26T18:15:10.113

Last Modified

2024-11-21T05:01:36.643

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: NONE
Availability Impact: NONE

Exploitability Score

10.0

Impact Score

2.9

Weaknesses

Type: Primary
CWE-307

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	mitel	6863_firmware	≤ 5.0	Yes
Operating System	mitel	6863_firmware	5.1	Yes
Operating System	mitel	6863_firmware	5.1	Yes
Operating System	mitel	6863_firmware	5.1	Yes
Operating System	mitel	6863_firmware	5.1	Yes
Operating System	mitel	6863_firmware	5.1	Yes
Hardware	mitel	6863	-	No
Operating System	mitel	6865_firmware	≤ 5.0	Yes
Operating System	mitel	6865_firmware	5.1	Yes
Operating System	mitel	6865_firmware	5.1	Yes
Operating System	mitel	6865_firmware	5.1	Yes
Operating System	mitel	6865_firmware	5.1	Yes
Operating System	mitel	6865_firmware	5.1	Yes
Hardware	mitel	6865	-	No
Operating System	mitel	6867_firmware	≤ 5.0	Yes
Operating System	mitel	6867_firmware	5.1	Yes
Operating System	mitel	6867_firmware	5.1	Yes
Operating System	mitel	6867_firmware	5.1	Yes
Operating System	mitel	6867_firmware	5.1	Yes
Operating System	mitel	6867_firmware	5.1	Yes
Hardware	mitel	6867	-	No
Operating System	mitel	6869_firmware	≤ 5.0	Yes
Operating System	mitel	6869_firmware	5.1	Yes
Operating System	mitel	6869_firmware	5.1	Yes
Operating System	mitel	6869_firmware	5.1	Yes
Operating System	mitel	6869_firmware	5.1	Yes
Operating System	mitel	6869_firmware	5.1	Yes
Hardware	mitel	6869	-	No
Operating System	mitel	6873_firmware	≤ 5.0	Yes
Operating System	mitel	6873_firmware	5.1	Yes
Operating System	mitel	6873_firmware	5.1	Yes
Operating System	mitel	6873_firmware	5.1	Yes
Operating System	mitel	6873_firmware	5.1	Yes
Operating System	mitel	6873_firmware	5.1	Yes
Hardware	mitel	6873	-	No
Operating System	mitel	6940_firmware	≤ 5.0	Yes
Operating System	mitel	6940_firmware	5.1	Yes
Operating System	mitel	6940_firmware	5.1	Yes
Operating System	mitel	6940_firmware	5.1	Yes
Operating System	mitel	6940_firmware	5.1	Yes
Operating System	mitel	6940_firmware	5.1	Yes
Hardware	mitel	6940	-	No
Operating System	mitel	6970_firmware	≤ 5.0	Yes
Operating System	mitel	6970_firmware	5.1	Yes
Operating System	mitel	6970_firmware	5.1	Yes
Operating System	mitel	6970_firmware	5.1	Yes
Operating System	mitel	6970_firmware	5.1	Yes
Operating System	mitel	6970_firmware	5.1	Yes
Hardware	mitel	6970	-	No
Operating System	mitel	6930_firmware	≤ 5.0	Yes
Operating System	mitel	6930_firmware	5.1	Yes
Operating System	mitel	6930_firmware	5.1	Yes
Operating System	mitel	6930_firmware	5.1	Yes
Operating System	mitel	6930_firmware	5.1	Yes
Operating System	mitel	6930_firmware	5.1	Yes
Hardware	mitel	6930	-	No
Operating System	mitel	6920_firmware	≤ 5.0	Yes
Operating System	mitel	6920_firmware	5.1	Yes
Operating System	mitel	6920_firmware	5.1	Yes
Operating System	mitel	6920_firmware	5.1	Yes
Operating System	mitel	6920_firmware	5.1	Yes
Operating System	mitel	6920_firmware	5.1	Yes
Hardware	mitel	6920	-	No
Operating System	mitel	6905_firmware	≤ 5.0	Yes
Operating System	mitel	6905_firmware	5.1	Yes
Operating System	mitel	6905_firmware	5.1	Yes
Operating System	mitel	6905_firmware	5.1	Yes
Operating System	mitel	6905_firmware	5.1	Yes
Operating System	mitel	6905_firmware	5.1	Yes
Hardware	mitel	6905	-	No
Operating System	mitel	6910_firmware	≤ 5.0	Yes
Operating System	mitel	6910_firmware	5.1	Yes
Operating System	mitel	6910_firmware	5.1	Yes
Operating System	mitel	6910_firmware	5.1	Yes
Operating System	mitel	6910_firmware	5.1	Yes
Operating System	mitel	6910_firmware	5.1	Yes
Hardware	mitel	6910	-	No

References

https://www.mitel.com/support/security-advisories Vendor Advisory ([email protected])
https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-20-0007 Vendor Advisory ([email protected])
https://www.mitel.com/support/security-advisories Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-20-0007 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)