CNNVD-202509-3915 Information
CNNVD ID
CNNVD-202509-3915
Related CVE
- CNNVD Published: 2025-09-25
Description (Chinese)
Zenitel ICX500和Zenitel ICX510都是挪威Zenitel公司的一款通信与控制平台。 Zenitel ICX500和Zenitel ICX510存在安全漏洞,该漏洞源于攻击者可直接查询底层数据库,可能导致检索Billing Admin数据库中所有数据,包括明文存储的用户凭据。
Description (English)
Zenitel ICX500 and Zenitel ICX510 are both communication and control platforms of the Norwegian company Zenitel. There is a security loophole in Zenitel ICX500 and Zenitel ICX510, which stems from the fact that the attackers have direct access to the bottom database, which may lead to the retrieval of all data in the Billing Admin database, including user documents that are explicitly stored.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Zesle
Published
2025-09-25
Last Modified
2026-02-24
References
https://wiki.zenitel.com/wiki/Downloads#ICX-AlphaCom_System https://wiki.zenitel.com/wiki/ICX_1.4.3.X_-_Release_Notes
Patch
https://wiki.zenitel.com/wiki/Downloads#Stations_and_Devices
Share on: