CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-22955

An issue was discovered on AudioCodes VoIP desk phones through 3.4.4.1000. The validation of firmware images only consists of simple checksum checks for different firmware components. Thus, by knowing how to calculate and where to store the required checksums for the flasher tool, an attacker is able to store malicious firmware.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 15.2%

CVSS Severity

CVSS v3 Score 7.8

References

Products affected by CVE-2023-22955

Audiocodes » 405hd » Version: N/A

cpe:2.3:h:audiocodes:405hd:-
Audiocodes » 445hd » Version: N/A

cpe:2.3:h:audiocodes:445hd:-
Audiocodes » C450hd » Version: N/A

cpe:2.3:h:audiocodes:c450hd:-
Audiocodes » 405hd Firmware » Version: N/A

cpe:2.3:o:audiocodes:405hd_firmware:-
Audiocodes » 405hd Firmware » Version: 2.2.12

cpe:2.3:o:audiocodes:405hd_firmware:2.2.12
Audiocodes » 405hd Firmware » Version: 3.4.4.1000

cpe:2.3:o:audiocodes:405hd_firmware:3.4.4.1000
Audiocodes » 445hd Firmware » Version: N/A

cpe:2.3:o:audiocodes:445hd_firmware:-
Audiocodes » 445hd Firmware » Version: 3.4.4.1000

cpe:2.3:o:audiocodes:445hd_firmware:3.4.4.1000
Audiocodes » C450hd Firmware » Version: N/A

cpe:2.3:o:audiocodes:c450hd_firmware:-
Audiocodes » C450hd Firmware » Version: 3.4.4.1000

cpe:2.3:o:audiocodes:c450hd_firmware:3.4.4.1000

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-22955

Products

Pricing

Contact Us