SecBoard
Zurück zur CVE-Übersicht

CVE-2022-29330

MEDIUM(4.9)

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Risk Signal Score13/100 — NIEDRIG
  • CVSS 4.9 — Mittel

EPSS-Score

1%

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

4.9

Technische Schwere

Beschreibung

Missing access control in the backup system of Telesoft VitalPBX before 3.2.1 allows attackers to access the PJSIP and SIP extension credentials, cryptographic keys and voicemails files via unspecified vectors.

Referenzen