← Back

CVE-2015-8251

nvd nist
Published: Sep 25, 2017Modified: May 13, 2026

JSON object

Loading...
5.9
Vector
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Exploitability: 2.2 / Impact: 3.6
Source: NVD

Description

OpenStage 60 and OpenScape Desk Phone IP 55G SIP V3, OpenStage 15, 20E, 20 and 40 and OpenScape Desk Phone IP 35G SIP V3, OpenScape Desk Phone IP 35G Eco SIP V3, OpenStage 60 and OpenScape Desk Phone IP 55G HFA V3, OpenStage 15, 20E, 20, and 40 and OpenScape Desk Phone IP 35G HFA V3, and OpenScape Desk Phone IP 35G Eco HFA V3 use non-unique X.509 certificates and SSH host keys.

Affected (10)

Unify
10 products
Openscape Desk Phone Ip 55g Sip Firmware
Openstage 15 Firmware
Openstage 20e Firmware
Openstage 20 Firmware
Openstage 40 Firmware
Openscape Desk Phone Ip 35g Sip Firmware
Openscape Desk Phone Ip 35g Eco Sip Firmware
Openscape Desk Phone Ip 55g Hfa Firmware
Openscape Desk Phone Ip 35g Hfa Firmware
Openstage 60 Firmware
Configuration A
1 platform
Running on/withPlatform Versions
Unify
Openstage 60
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Openscape Desk Phone Ip 55g Sip Firmware
Version 3.0
Running on/withPlatform Versions
Unify
Openscape Desk Phone Ip 55g Sip
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Openstage 15 Firmware
Version 3.0
Running on/withPlatform Versions
Unify
Openstage 15
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Openstage 20e Firmware
Version 3.0
Running on/withPlatform Versions
Unify
Openstage 20e
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Openstage 20 Firmware
Version 3.0
Running on/withPlatform Versions
Unify
Openstage 20
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Openstage 40 Firmware
Version 3.0
Running on/withPlatform Versions
Unify
Openstage 40
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Openscape Desk Phone Ip 35g Sip Firmware
Version 3.0
Running on/withPlatform Versions
Unify
Openscape Desk Phone Ip 35g Sip
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Openscape Desk Phone Ip 35g Eco Sip Firmware
Version 3.0
Running on/withPlatform Versions
Unify
Openscape Desk Phone Ip 35g Eco Sip
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Openscape Desk Phone Ip 55g Hfa Firmware
Version 3.0
Running on/withPlatform Versions
Unify
Openscape Desk Phone Ip 55g Hfa
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Openscape Desk Phone Ip 35g Hfa Firmware
Version 3.0
Running on/withPlatform Versions
Unify
Openscape Desk Phone Ip 35g Hfa
All versions
Configuration K
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Openstage 60 Firmware
Version 3.0
Running on/withPlatform Versions
Unify
Openscape Desk Phone Ip 35g Eco Hfa
All versions

Related CWEs

CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (8)

Source: cret@cert.org
Third Party AdvisoryUS Government Resource
Source: cret@cert.org
Vendor Advisory
Source: cret@cert.org
Vendor Advisory
Source: cret@cert.org
Third Party AdvisoryUS Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryUS Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryUS Government Resource

Timeline

No history available yet.