CVE-2019-20031
First published: Wed Jul 29 2020(Updated: )
NEC UM8000, UM4730 and prior non-InMail voicemail systems with all known software versions may permit an infinite number of login attempts in the telephone user interface (TUI), effectively allowing brute force attacks.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Nec Um8000 Firmware | ||
| NEC UM8000 | ||
| Nec Um4730 Firmware | ||
| Nec Um4730 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2019-20031.
What is the title of this vulnerability?
The title of this vulnerability is 'NEC UM8000 UM4730 and prior non-InMail voicemail systems with all known software versions may permit…'
What is the severity of CVE-2019-20031?
The severity of CVE-2019-20031 is critical (9.1).
What is the description of CVE-2019-20031?
The description of CVE-2019-20031 is that NEC UM8000, UM4730 and prior non-InMail voicemail systems with all known software versions may permit an infinite number of login attempts in the telephone user interface (TUI), effectively allowing brute force attacks.
How can I fix CVE-2019-20031?
To fix CVE-2019-20031, it is recommended to update the firmware of the NEC UM8000 and UM4730 voicemail systems to the latest version.
- collector/nvd-index
- agent/event
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/description
- agent/type
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/nec
- canonical/nec um8000 firmware
- canonical/nec um8000
- canonical/nec um4730 firmware
- canonical/nec um4730