Unrated severityNVD Advisory· Published Apr 27, 2023· Updated Jan 31, 2025

CVE-2023-25437

Description

An issue was discovered in vTech VCS754 version 1.1.1.A before 1.1.1.H, allows attackers to gain escalated privileges and gain sensitive information due to cleartext passwords passed in the raw HTML.

Affected products

vTech/VCS754description
vTech/VCS754llm-create
Range: <1.1.1.H

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

i.imgur.com/aDuiY8q.pngmitre
yechiel.xyz/vulnerability-in-vtechs-vcs754a-business-phones-exposes-sip-credentialsmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.011
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000