Unrestricted Direct SIP Calling Vulnerability in Akuvox E11

Unrestricted Direct SIP Calling Vulnerability in Akuvox E11

CVE-2023-0348 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Akuvox E11 allows direct SIP calls. No access control is enforced by the SIP servers, which could allow an attacker to contact any device within Akuvox to call any other device.

Learn more about our Cis Benchmark Audit For Server Software.