Akuvox E11 uses a weak encryption algorithm for stored passwords and uses a hard-coded password for decryption which could allow the encrypted passwords to be decrypted from the configuration file.
CVSS Score
7.2
EPSS Score
0.001
Published
2023-03-13
The Akuvox E11 web server can be accessed without any user authentication, and this could allow an attacker to access sensitive information, as well as create and download packet captures with known default URLs.
CVSS Score
9.1
EPSS Score
0.002
Published
2023-03-13
Akuvox E11 uses a hard-coded cryptographic key, which could allow an attacker to decrypt sensitive information.
CVSS Score
6.5
EPSS Score
0.001
Published
2023-03-13
Page 2