Audiocodes: >> One Voice Operations Center Security Vulnerabilities
An issue was discovered in AudioCodes One Voice Operations Center (OVOC) before 8.4.582. Due to the use of a hard-coded key, an attacker is able to decrypt sensitive data such as passwords extracted from the topology file.
CVSS Score
7.5
EPSS Score
0.001
Published
2025-02-07
An issue was discovered in AudioCodes One Voice Operations Center (OVOC) before 8.4.582. Due to improper neutralization of input via the devices API, an attacker can inject malicious JavaScript code (XSS) to attack logged-in administrator sessions.
CVSS Score
6.1
EPSS Score
0.001
Published
2025-02-07
An issue was discovered in AudioCodes One Voice Operations Center (OVOC) before 8.4.582. Due to a path traversal vulnerability, sensitive data can be read without any authentication.
CVSS Score
7.5
EPSS Score
0.001
Published
2025-02-07