Vulnerability Description
UNIVERGE Aspire series PBX (UNIVERGE Aspire WX from 1.00 to 3.51, UNIVERGE Aspire UX from 1.00 to 9.70, UNIVERGE SV9100 from 1.00 to 10.70, and SL2100 from 1.00 to 3.00) allows a remote authenticated attacker to cause system down and a denial of service (DoS) condition by sending a specially crafted command.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Necplatforms | Univerge Aspire Wx Firmware | >= 1.00, <= 3.51 |
| Necplatforms | Univerge Aspire Wx | - |
| Necplatforms | Univerge Aspire Ux Firmware | >= 1.00, <= 9.70 |
| Necplatforms | Univerge Aspire Ux | - |
| Necplatforms | Univerge Sv9100 Firmware | >= 1.00, <= 10.70 |
| Necplatforms | Univerge Sv9100 | - |
| Necplatforms | Sl2100 Firmware | >= 1.00, <= 3.00 |
| Necplatforms | Sl2100 | - |
References
- https://jvn.jp/en/jp/JVN12737530/index.htmlThird Party Advisory
- https://www.necplatforms.co.jp/en/press/security_adv.htmlVendor Advisory
- https://jvn.jp/en/jp/JVN12737530/index.htmlThird Party Advisory
- https://www.necplatforms.co.jp/en/press/security_adv.htmlVendor Advisory
FAQ
What is CVE-2021-20677?
CVE-2021-20677 is a vulnerability with a CVSS score of 3.1 (LOW). UNIVERGE Aspire series PBX (UNIVERGE Aspire WX from 1.00 to 3.51, UNIVERGE Aspire UX from 1.00 to 9.70, UNIVERGE SV9100 from 1.00 to 10.70, and SL2100 from 1.00 to 3.00) allows a remote authenticated ...
How severe is CVE-2021-20677?
CVE-2021-20677 has been rated LOW with a CVSS base score of 3.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-20677?
Check the references section above for vendor advisories and patch information. Affected products include: Necplatforms Univerge Aspire Wx Firmware, Necplatforms Univerge Aspire Wx, Necplatforms Univerge Aspire Ux Firmware, Necplatforms Univerge Aspire Ux, Necplatforms Univerge Sv9100 Firmware.