Unknown
CVE-2019-18863
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
CVE-2019-18863
MITRE ATT&CK
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Topic Tags
Description
A key length vulnerability in the implementation of the SRTP 128-bit key on Mitel 6800 and 6900 SIP series phones, versions 5.1.0.2051 SP2 and earlier, could allow an attacker to launch a man-in-the-middle attack when SRTP is used in a call. A successful exploit may allow the attacker to intercept sensitive information.
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
General Information
Vendors
Products
- 6863i firmware,
- 6863i firmware 5.1.0.2051,
- 6865i firmware,
- 6865i firmware 5.1.0.2051,
- 6867i firmware,
- 6867i firmware 5.1.0.2051,
- 6869i firmware,
- 6869i firmware 5.1.0.2051,
- 6873i firmware,
- 6873i firmware 5.1.0.2051,
- 6920 firmware,
- 6920 firmware 5.1.0.2051,
- 6930 firmware,
- 6930 firmware 5.1.0.2051,
- 6940 firmware,
- 6940 firmware 5.1.0.2051
Weaknesses
References
Miscellaneous
Additional Info
Technical Analysis
Report as Emergent Threat Response
Report as Zero-day Exploit
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
