Unrated severityNVD Advisory· Published Apr 23, 2021· Updated Aug 3, 2024

CVE-2021-31584

Description

Sipwise C5 NGCP www_csc version 3.6.4 up to and including platform NGCP CE mr3.8.13 allows call/click2dial CSRF attacks for actions with administrative privileges.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Sipwise/C5 NGCPdescription
Sipwise/C5 NGCP www_cscllm-create
Range: >=3.6.4, <=NGCP CE mr3.8.13

Patches

Vulnerability mechanics

References

lists.sipwise.com/pipermail/spce-user_lists.sipwise.com/2021-September/014708.htmlmitrex_refsource_MISC
packetstormsecurity.com/files/162318/Sipwise-C5-NGCP-CSC-Cross-Site-Request-Forgery.htmlmitrex_refsource_MISC
www.sipwise.commitrex_refsource_MISC
www.zeroscience.mk/en/vulnerabilitiesmitrex_refsource_MISC
www.zeroscience.mk/en/vulnerabilities/ZSL-2021-5649.phpmitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000