// For flags

CVE-2019-18863

 

Severity Score

5.9
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

A key length vulnerability in the implementation of the SRTP 128-bit key on Mitel 6800 and 6900 SIP series phones, versions 5.1.0.2051 SP2 and earlier, could allow an attacker to launch a man-in-the-middle attack when SRTP is used in a call. A successful exploit may allow the attacker to intercept sensitive information.

Una vulnerabilidad de longitud de clave en la implementación de la clave de 128 bits de SRTP en los teléfonos SIP Mitel de la serie 6800 y 6900, versiones anteriores a 5.1.0.2051 SP2, podría permitir a un atacante iniciar un ataque de tipo man-in-the-middle cuando SRTP es usado en una llamada. Una explotación con éxito puede permitir a un atacante interceptar información confidencial.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None
Attack Vector
Network
Attack Complexity
Medium
Authentication
None
Confidentiality
Partial
Integrity
None
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2019-11-11 CVE Reserved
  • 2020-03-02 CVE Published
  • 2023-03-07 EPSS Updated
  • 2024-08-05 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-326: Inadequate Encryption Strength
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Mitel
Search vendor "Mitel"
6863i Firmware
Search vendor "Mitel" for product "6863i Firmware"
< 5.1.0.2051
Search vendor "Mitel" for product "6863i Firmware" and version " < 5.1.0.2051"
-
Affected
in Mitel
Search vendor "Mitel"
6863i
Search vendor "Mitel" for product "6863i"
--
Safe
Mitel
Search vendor "Mitel"
6863i Firmware
Search vendor "Mitel" for product "6863i Firmware"
5.1.0.2051
Search vendor "Mitel" for product "6863i Firmware" and version "5.1.0.2051"
-
Affected
in Mitel
Search vendor "Mitel"
6863i
Search vendor "Mitel" for product "6863i"
--
Safe
Mitel
Search vendor "Mitel"
6863i Firmware
Search vendor "Mitel" for product "6863i Firmware"
5.1.0.2051
Search vendor "Mitel" for product "6863i Firmware" and version "5.1.0.2051"
sp2_hf2
Affected
in Mitel
Search vendor "Mitel"
6863i
Search vendor "Mitel" for product "6863i"
--
Safe
Mitel
Search vendor "Mitel"
6865i Firmware
Search vendor "Mitel" for product "6865i Firmware"
< 5.1.0.2051
Search vendor "Mitel" for product "6865i Firmware" and version " < 5.1.0.2051"
-
Affected
in Mitel
Search vendor "Mitel"
6865i
Search vendor "Mitel" for product "6865i"
--
Safe
Mitel
Search vendor "Mitel"
6865i Firmware
Search vendor "Mitel" for product "6865i Firmware"
5.1.0.2051
Search vendor "Mitel" for product "6865i Firmware" and version "5.1.0.2051"
-
Affected
in Mitel
Search vendor "Mitel"
6865i
Search vendor "Mitel" for product "6865i"
--
Safe
Mitel
Search vendor "Mitel"
6865i Firmware
Search vendor "Mitel" for product "6865i Firmware"
5.1.0.2051
Search vendor "Mitel" for product "6865i Firmware" and version "5.1.0.2051"
sp2_hf2
Affected
in Mitel
Search vendor "Mitel"
6865i
Search vendor "Mitel" for product "6865i"
--
Safe
Mitel
Search vendor "Mitel"
6867i Firmware
Search vendor "Mitel" for product "6867i Firmware"
< 5.1.0.2051
Search vendor "Mitel" for product "6867i Firmware" and version " < 5.1.0.2051"
-
Affected
in Mitel
Search vendor "Mitel"
6867i
Search vendor "Mitel" for product "6867i"
--
Safe
Mitel
Search vendor "Mitel"
6867i Firmware
Search vendor "Mitel" for product "6867i Firmware"
5.1.0.2051
Search vendor "Mitel" for product "6867i Firmware" and version "5.1.0.2051"
-
Affected
in Mitel
Search vendor "Mitel"
6867i
Search vendor "Mitel" for product "6867i"
--
Safe
Mitel
Search vendor "Mitel"
6867i Firmware
Search vendor "Mitel" for product "6867i Firmware"
5.1.0.2051
Search vendor "Mitel" for product "6867i Firmware" and version "5.1.0.2051"
sp2_hf2
Affected
in Mitel
Search vendor "Mitel"
6867i
Search vendor "Mitel" for product "6867i"
--
Safe
Mitel
Search vendor "Mitel"
6869i Firmware
Search vendor "Mitel" for product "6869i Firmware"
< 5.1.0.2051
Search vendor "Mitel" for product "6869i Firmware" and version " < 5.1.0.2051"
-
Affected
in Mitel
Search vendor "Mitel"
6869i
Search vendor "Mitel" for product "6869i"
--
Safe
Mitel
Search vendor "Mitel"
6869i Firmware
Search vendor "Mitel" for product "6869i Firmware"
5.1.0.2051
Search vendor "Mitel" for product "6869i Firmware" and version "5.1.0.2051"
-
Affected
in Mitel
Search vendor "Mitel"
6869i
Search vendor "Mitel" for product "6869i"
--
Safe
Mitel
Search vendor "Mitel"
6869i Firmware
Search vendor "Mitel" for product "6869i Firmware"
5.1.0.2051
Search vendor "Mitel" for product "6869i Firmware" and version "5.1.0.2051"
sp2_hf2
Affected
in Mitel
Search vendor "Mitel"
6869i
Search vendor "Mitel" for product "6869i"
--
Safe
Mitel
Search vendor "Mitel"
6873i Firmware
Search vendor "Mitel" for product "6873i Firmware"
< 5.1.0.2051
Search vendor "Mitel" for product "6873i Firmware" and version " < 5.1.0.2051"
-
Affected
in Mitel
Search vendor "Mitel"
6873i
Search vendor "Mitel" for product "6873i"
--
Safe
Mitel
Search vendor "Mitel"
6873i Firmware
Search vendor "Mitel" for product "6873i Firmware"
5.1.0.2051
Search vendor "Mitel" for product "6873i Firmware" and version "5.1.0.2051"
-
Affected
in Mitel
Search vendor "Mitel"
6873i
Search vendor "Mitel" for product "6873i"
--
Safe
Mitel
Search vendor "Mitel"
6873i Firmware
Search vendor "Mitel" for product "6873i Firmware"
5.1.0.2051
Search vendor "Mitel" for product "6873i Firmware" and version "5.1.0.2051"
sp2_hf2
Affected
in Mitel
Search vendor "Mitel"
6873i
Search vendor "Mitel" for product "6873i"
--
Safe
Mitel
Search vendor "Mitel"
6920 Firmware
Search vendor "Mitel" for product "6920 Firmware"
< 5.1.0.2051
Search vendor "Mitel" for product "6920 Firmware" and version " < 5.1.0.2051"
-
Affected
in Mitel
Search vendor "Mitel"
6920
Search vendor "Mitel" for product "6920"
--
Safe
Mitel
Search vendor "Mitel"
6920 Firmware
Search vendor "Mitel" for product "6920 Firmware"
5.1.0.2051
Search vendor "Mitel" for product "6920 Firmware" and version "5.1.0.2051"
-
Affected
in Mitel
Search vendor "Mitel"
6920
Search vendor "Mitel" for product "6920"
--
Safe
Mitel
Search vendor "Mitel"
6920 Firmware
Search vendor "Mitel" for product "6920 Firmware"
5.1.0.2051
Search vendor "Mitel" for product "6920 Firmware" and version "5.1.0.2051"
sp2_hf2
Affected
in Mitel
Search vendor "Mitel"
6920
Search vendor "Mitel" for product "6920"
--
Safe
Mitel
Search vendor "Mitel"
6930 Firmware
Search vendor "Mitel" for product "6930 Firmware"
< 5.1.0.2051
Search vendor "Mitel" for product "6930 Firmware" and version " < 5.1.0.2051"
-
Affected
in Mitel
Search vendor "Mitel"
6930
Search vendor "Mitel" for product "6930"
--
Safe
Mitel
Search vendor "Mitel"
6930 Firmware
Search vendor "Mitel" for product "6930 Firmware"
5.1.0.2051
Search vendor "Mitel" for product "6930 Firmware" and version "5.1.0.2051"
-
Affected
in Mitel
Search vendor "Mitel"
6930
Search vendor "Mitel" for product "6930"
--
Safe
Mitel
Search vendor "Mitel"
6930 Firmware
Search vendor "Mitel" for product "6930 Firmware"
5.1.0.2051
Search vendor "Mitel" for product "6930 Firmware" and version "5.1.0.2051"
sp2_hf2
Affected
in Mitel
Search vendor "Mitel"
6930
Search vendor "Mitel" for product "6930"
--
Safe
Mitel
Search vendor "Mitel"
6940 Firmware
Search vendor "Mitel" for product "6940 Firmware"
< 5.1.0.2051
Search vendor "Mitel" for product "6940 Firmware" and version " < 5.1.0.2051"
-
Affected
in Mitel
Search vendor "Mitel"
6940
Search vendor "Mitel" for product "6940"
--
Safe
Mitel
Search vendor "Mitel"
6940 Firmware
Search vendor "Mitel" for product "6940 Firmware"
5.1.0.2051
Search vendor "Mitel" for product "6940 Firmware" and version "5.1.0.2051"
-
Affected
in Mitel
Search vendor "Mitel"
6940
Search vendor "Mitel" for product "6940"
--
Safe
Mitel
Search vendor "Mitel"
6940 Firmware
Search vendor "Mitel" for product "6940 Firmware"
5.1.0.2051
Search vendor "Mitel" for product "6940 Firmware" and version "5.1.0.2051"
sp2_hf2
Affected
in Mitel
Search vendor "Mitel"
6940
Search vendor "Mitel" for product "6940"
--
Safe