Security Advisory

CVE-2023-22957

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-08-11 00:00:00

Last updated 2024-10-10 15:48:38

Assigner mitre

State PUBLISHED

Description

An issue was discovered in libac_des3.so on AudioCodes VoIP desk phones through 3.4.4.1000. Due to the use of hard-coded cryptographic key, an attacker with access to backup or configuration files is able to decrypt encrypted values and retrieve sensitive information, e.g., the device root password.

← Browse all CVEs View on cve.org ↗