CVE-2019-12325

The Htek UC902 VoIP phone web management interface contains several buffer overflow vulnerabilities in the firmware version 2.0.4.4.46, which allow an attacker to crash the device (DoS) without authentication or execute code (authenticated as a user) to spawn a remote shell as a root user.
References
Configurations

Configuration 1


Information

Published : 2019-07-22 04:15

Updated : 2022-04-18 05:01


NVD link : CVE-2019-12325

Mitre link : CVE-2019-12325

Products Affected
CWE