CNNVD-202509-3918 Information

CNNVD ID

CNNVD-202509-3918

Related CVE

CVE-2025-59814

• CNNVD Published: 2025-09-25

Description (Chinese)

Zenitel ICX500和Zenitel ICX510都是挪威Zenitel公司的一款通信与控制平台。 Zenitel ICX500和Zenitel ICX510存在安全漏洞，该漏洞源于恶意行为者可未经授权访问Billing Admin端点，可能导致读取数据库全部内容。

Description (English)

Zenitel ICX500 and Zenitel ICX510 are both communication and control platforms of the Norwegian company Zenitel. There is a security gap between Zenitel ICX500 and Zenitel ICX510, which stems from the unauthorized access of malicious actors to the Billing Admin endpoint, which may lead to full access to the database.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Zesle

Published

2025-09-25

Last Modified

2026-02-24

References

https://wiki.zenitel.com/wiki/Downloads#ICX-AlphaCom_System https://wiki.zenitel.com/wiki/ICX_1.4.3.X_-_Release_Notes

Patch

https://wiki.zenitel.com/wiki/Downloads#Stations_and_Devices