An issue was discovered on AudioCodes VoIP desk phones through 3.4.4.1000. Due to the use of a hard-coded cryptographic key, an attacker is able to decrypt encrypted configuration files and retrieve sensitive information.
AI analysis not yet available
Plain-English explanation, risk summary, and remediation steps will appear here once AI analysis is complete.
No Fix Known
No patch has been released yet. Apply workarounds or mitigations where available.
| Vendor | Product | Versions | Fixed In |
|---|---|---|---|
| audiocodes | c470hd_firmware | 3.4.4.1000 | - |
| audiocodes | c455hd_firmware | 3.4.4.1000 | - |
| audiocodes | c435hd_firmware |
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
6
Affected Products
8
References
audiocodes / c470hd_firmware
| 3.4.4.1000 |
| - |
| audiocodes | 445hd_firmware | 3.4.4.1000 | - |
| audiocodes | 405hd_firmware | 3.4.4.1000 | - |
| audiocodes | c450hd_firmware | 3.4.4.1000 | - |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Exploitability
Impact