Akuvox E11 cloud login is performed through an unencrypted HTTP connection. An attacker could gain access to the Akuvox cloud and device if the MAC address of a device if known.
References
Link | Resource |
---|---|
https://www.cisa.gov/news-events/ics-advisories/icsa-23-068-01 | Third Party Advisory US Government Resource |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: icscert
Published: 2023-03-13T20:28:00.701Z
Updated: 2023-03-13T20:28:00.701Z
Reserved: 2023-01-17T19:23:22.836Z
Link: CVE-2023-0346
JSON object: View
NVD Information
Status : Modified
Published: 2023-03-13T21:15:13.137
Modified: 2023-11-07T04:00:14.917
Link: CVE-2023-0346
JSON object: View
Redhat Information
No data.
CWE
No CWE.