Vulnerability Details CVE-2023-0352
The Akuvox E11 password recovery webpage can be accessed without authentication, and an attacker could download the device key file. An attacker could then use this page to reset the password back to the default.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 30.7%
CVSS Severity
CVSS v3 Score 9.1
References
Products affected by CVE-2023-0352
-
cpe:2.3:h:akuvox:e11:-
-
cpe:2.3:o:akuvox:e11_firmware:-