Unrated severityNVD Advisory· Published Jul 29, 2020· Updated Aug 5, 2024

CVE-2019-20027

Description

Aspire-derived NEC PBXes, including the SV8100, SV9100, SL1100 and SL2100 with software releases 7.0 or higher contain the possibility if incorrectly configured to allow a blank username and password combination to be entered as a valid, successfully authenticating account.

Affected products

NEC/NEC PBXesdescription
NEC/SV8100llm-fuzzy
Range: >=7.0
NEC/SV9100llm-fuzzy
Range: >=7.0
NEC/SL1100llm-fuzzy
Range: >=7.0
NEC/SL2100llm-fuzzy
Range: >=7.0

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

shadytel.su/files/nec_cve.txtmitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000