Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
VICIDIAL dialer (aka Asterisk GUI client) 2.8-403a, 2.7, 2.7RC1, and earlier has a hardcoded password of donotedit for the (1) VDAD and (2) VDCL users, which makes it easier for remote attackers to obtain access.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
VICIDIAL dialer 信任管理漏洞
Vulnerability Description
VICIDIAL dialer(又名Asterisk GUI client)是美国Vicidial集团所负责维护的一套基于Asterisk的开源PBX系统,也是一个用于处理大量呼入、呼出的呼叫中心软件包。 VICIDIAL dialer 2.8-403a及之前的版本和2.7及2.7RC1版本中存在安全漏洞,该漏洞源于程序对VDAD和VDCL用户使用硬编码密码。远程攻击者可利用该漏洞获取访问权限。
CVSS Information
N/A
Vulnerability Type
N/A