Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The SIP TLS module of Huawei CloudLink Phone 7900 with V600R019C10 has a TLS certificate verification vulnerability. Due to insufficient verification of specific parameters of the TLS server certificate, attackers can perform man-in-the-middle attacks, leading to the affected phones registered abnormally, affecting the availability of IP phones.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Huawei CloudLink Phone 7900 SIP TLS模块信任管理问题漏洞
Vulnerability Description
Huawei CloudLink Phone 7900是中国华为(Huawei)公司的一款IP电话。SIP TLS是其中的一个传输层安全模块。 Huawei CloudLink Phone 7900 V600R019C10版本中的SIP TLS模块存在安全漏洞,该漏洞源于程序对TLS服务器证书的参数校验不充分。攻击者可通过实施中间人攻击利用该漏洞导致受影响话机注册异常,影响话机的可用性。
CVSS Information
N/A
Vulnerability Type
N/A