CVE-2025-15542

EPSS 0.06%
Veröffentlicht 29.01.2026 18:06:21
Zuletzt bearbeitet 09.03.2026 17:52:11
Quelle f23511db-6c3e-4e32-a477-6aa17d
CVE-Watchlists
Login
Unerledigt
Login

Improper handling of exceptional conditions in VX800v v1.0 in SIP processing allows an attacker to flood the device with crafted INVITE messages, blocking all voice lines and causing a denial of service on incoming calls.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Tp-link ≫ Vx800v Firmware Version < 800.0.12

Tp-link ≫ Vx800v Version1.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.06%	0.18

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.3	3.9	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
f23511db-6c3e-4e32-a477-6aa17d310630	6.3	0	0	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CWE-754 Improper Check for Unusual or Exceptional Conditions

The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.

https://www.tp-link.com/de/support/download/vx800v/#Firmware

Product

https://www.tp-link.com/us/support/faq/4930/

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2025-15542

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-15542

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-15542

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-15542