A vulnerability in Mitel 6900 Series IP (MiNet) phones excluding 6970, versions 1.8 (1.8.0.12) and earlier, could allow a unauthenticated attacker with physical access to the phone to gain root access due to insufficient access control for test functionality during system startup. A successful exploit could allow access to sensitive information and code execution.
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HMitel 6905
HWMitelwszystkie wersjeMitel 6910
HWMitelwszystkie wersjeMitel 6920
HWMitelwszystkie wersjeMitel 6930
HWMitelwszystkie wersjeMitel 6930 Sip
HWMitelwszystkie wersjeMitel 6940
HWMitelwszystkie wersjeMitel 6940 Sip
HWMitelwszystkie wersjeMitel Minet Firmware
OSMitel≤ 1.8.0.12
Related vulnerabilities
A vulnerability in the Mitel 6800 Series, 6900 Series, and 6900w Series SIP Phones, including the 6970 Confere...
In Unify CP IP Phone firmware 1.10.4.3, Weak Credentials are used (a hardcoded root password).
The Bluetooth handset of Mitel MiVoice 6873i, 6930, and 6940 SIP phones with firmware before 5.1.0.SP6 could a...
The Web UI component of Mitel MiVoice 6800 and 6900 series SIP Phones with firmware before 5.1.0.SP5 could all...
Mitel 6800 and 6900 Series SIP phone devices through 2022-04-27 have "undocumented functionality." A vulnerabi...