Vulnerability: Brute Force Attack on NEC UM8000 and UM4730 Voicemail Systems

Vulnerability: Brute Force Attack on NEC UM8000 and UM4730 Voicemail Systems

CVE-2019-20031 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

NEC UM8000, UM4730 and prior non-InMail voicemail systems with all known software versions may permit an infinite number of login attempts in the telephone user interface (TUI), effectively allowing brute force attacks.

Learn more about our User Device Pen Test.