// For flags

CVE-2021-44746

 

Severity Score

5.3
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

UNIVERGE DT 820 V3.2.7.0 and prior, UNIVERGE DT 830 V5.2.7.0 and prior, UNIVERGE DT 930 V2.4.0.0 and prior, IP Phone Manager V8.9.1 and prior, Data Maintenance Tool for DT900 Series V5.3.0.0 and prior, Data Maintenance Tool for DT800 Series V4.2.0.0 and prior allows a remote attacker who can access to the internal network, the configuration information may be obtained.

UNIVERGE DT 820 versiones V3.2.7.0 y anteriores, UNIVERGE DT 830 versiones V5.2.7.0 y anteriores, UNIVERGE DT 930 versiones V2.4.0.0 y anteriores, IP Phone Manager versiones V8.9.1 y anteriores, Data Maintenance Tool for DT900 Series versiones V5.3.0.0 y anteriores, Data Maintenance Tool for DT800 Series versiones V4.2.0.0 y anteriores permiten que un atacante remoto que pueda acceder a la red interna, pueda obtener la informaciĆ³n de configuraciĆ³n

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
None
Availability
None
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
None
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2021-12-08 CVE Reserved
  • 2022-02-01 CVE Published
  • 2024-08-04 CVE Updated
  • 2025-02-04 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
CAPEC
References (1)
URL Tag Source
URL Date SRC
URL Date SRC
URL Date SRC
https://www.necplatforms.co.jp/en/product/security_adv/211217.html 2023-08-08
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Nec
Search vendor "Nec"
 Univerge Dt830 Firmware
Search vendor "Nec" for product "Univerge Dt830 Firmware"
 <= 5.2.7.0
Search vendor "Nec" for product "Univerge Dt830 Firmware" and version " <= 5.2.7.0"
-
Affected
in Nec
Search vendor "Nec"
 Univerge Dt830
Search vendor "Nec" for product "Univerge Dt830"
--
Safe
Nec
Search vendor "Nec"
 Univerge Dt820 Firmware
Search vendor "Nec" for product "Univerge Dt820 Firmware"
 <= 3.2.7.0
Search vendor "Nec" for product "Univerge Dt820 Firmware" and version " <= 3.2.7.0"
-
Affected
in Nec
Search vendor "Nec"
 Univerge Dt820
Search vendor "Nec" for product "Univerge Dt820"
--
Safe
Nec
Search vendor "Nec"
 Univerge Dt930 Firmware
Search vendor "Nec" for product "Univerge Dt930 Firmware"
 <= 2.4.0.0
Search vendor "Nec" for product "Univerge Dt930 Firmware" and version " <= 2.4.0.0"
-
Affected
in Nec
Search vendor "Nec"
 Univerge Dt930
Search vendor "Nec" for product "Univerge Dt930"
--
Safe
Nec
Search vendor "Nec"
 Univerge Dt900 Data Maintenance Tool
Search vendor "Nec" for product "Univerge Dt900 Data Maintenance Tool"
 <= 5.3.0.0
Search vendor "Nec" for product "Univerge Dt900 Data Maintenance Tool" and version " <= 5.3.0.0"
-
Affected
Nec
Search vendor "Nec"
 Univerge Dt800 Data Maintenance Tool
Search vendor "Nec" for product "Univerge Dt800 Data Maintenance Tool"
 <= 4.2.0.0
Search vendor "Nec" for product "Univerge Dt800 Data Maintenance Tool" and version " <= 4.2.0.0"
-
Affected
Nec
Search vendor "Nec"
 Univerge Ip Phone Manager
Search vendor "Nec" for product "Univerge Ip Phone Manager"
 <= 8.9.1
Search vendor "Nec" for product "Univerge Ip Phone Manager" and version " <= 8.9.1"
-
Affected