Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5
CVE-2024-52881
- EPSS 0.15%
- Veröffentlicht 07.02.2025 16:15:36
- Zuletzt bearbeitet 01.05.2025 14:25:18
An issue was discovered in AudioCodes One Voice Operations Center (OVOC) before 8.4.582. Due to the use of a hard-coded key, an attacker is able to decrypt sensitive data such as passwords extracted from the topology file.
6.1
CVE-2024-52882
- EPSS 0.09%
- Veröffentlicht 07.02.2025 16:15:36
- Zuletzt bearbeitet 01.05.2025 14:25:30
An issue was discovered in AudioCodes One Voice Operations Center (OVOC) before 8.4.582. Due to improper neutralization of input via the devices API, an attacker can inject malicious JavaScript code (XSS) to attack logged-in administrator sessions.
7.5
CVE-2024-52883
- EPSS 0.27%
- Veröffentlicht 07.02.2025 16:15:36
- Zuletzt bearbeitet 01.05.2025 14:25:40
An issue was discovered in AudioCodes One Voice Operations Center (OVOC) before 8.4.582. Due to a path traversal vulnerability, sensitive data can be read without any authentication.
1