CVE-2019-18863

A key length vulnerability in the implementation of the SRTP 128-bit key on Mitel 6800 and 6900 SIP series phones, versions 5.1.0.2051 SP2 and earlier, could allow an attacker to launch a man-in-the-middle attack when SRTP is used in a call. A successful exploit may allow the attacker to intercept sensitive information.
Configurations

Configuration 1


Information

Published : 2020-03-02 06:15

Updated : 2021-07-21 11:39


NVD link : CVE-2019-18863

Mitre link : CVE-2019-18863

Products Affected
CWE
CWE-326

Inadequate Encryption Strength