CVE-2019-20032
First published: Wed Jul 29 2020(Updated: )
An attacker with access to an InMail voicemail box equipped with the find me/follow me feature on Aspire-derived NEC PBXes, including all versions of SV8100, SV9100, SL1100 and SL2100 devices, may access the system's administration modem.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Nec Sv8100 Firmware | ||
| Nec Sv8100 | ||
| Nec Sv9100 Firmware | ||
| NEC SV9100 | ||
| Nec Sl1100 Firmware | ||
| Nec Sl1100 | ||
| Nec Sl2100 Firmware | ||
| Nec Sl2100 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2019-20032?
CVE-2019-20032 is a vulnerability that allows an attacker with access to an InMail voicemail box equipped with the find me/follow me feature on Aspire-derived NEC PBXes to access the system's administration modem.
Which software versions are affected by CVE-2019-20032?
All versions of SV8100, SV9100, SL1100, and SL2100 devices are affected by CVE-2019-20032.
What is the severity of CVE-2019-20032?
CVE-2019-20032 has a severity score of 6.5, which is considered medium.
How can I fix CVE-2019-20032?
To fix CVE-2019-20032, it is recommended to update the firmware of the affected NEC PBX devices to a patched version.
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/nec
- canonical/nec sv8100 firmware
- canonical/nec sv8100
- canonical/nec sv9100 firmware
- canonical/nec sv9100
- canonical/nec sl1100 firmware
- canonical/nec sl1100
- canonical/nec sl2100 firmware
- canonical/nec sl2100