4602sw Ip Phone

4602sw_ip_phone

Vendor: Avaya • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2007-3322 1Avaya 14602sw Ip Phone Apr 23, 2026 Jun 21, 2007 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The Avaya 4602 SW IP Phone (Model 4602D02A) with 2.2.2 and earlier SIP firmware uses a constant media port number for calls, which allows remote attackers to cause a denial of service (audio quality loss) via a flood of...Show more The Avaya 4602 SW IP Phone (Model 4602D02A) with 2.2.2 and earlier SIP firmware uses a constant media port number for calls, which allows remote attackers to cause a denial of service (audio quality loss) via a flood of packets to the RTP port.Show less
CVE-2007-3321 1Avaya 14602sw Ip Phone Apr 23, 2026 Jun 21, 2007 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The Avaya 4602 SW IP Phone (Model 4602D02A) with 2.2.2 and earlier SIP firmware allows remote attackers to cause a denial of service (device reboot) via a flood of packets to the BOOTP port (68/udp).
CVE-2007-3320 1Avaya 14602sw Ip Phone Apr 23, 2026 Jun 21, 2007 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The Avaya 4602SW IP Phone (Model 4602D02A) with 2.2.2 and earlier SIP firmware accepts SIP INVITE requests from arbitrary source IP addresses, which allows remote attackers to have an unspecified impact.
CVE-2007-3319 1Avaya 14602sw Ip Phone Apr 23, 2026 Jun 21, 2007 N/A· v4 N/A· v3 7.5 HIGH· v2 The Avaya 4602SW IP Phone (Model 4602D02A) with 2.2.2 and earlier SIP firmware does not use the cnonce parameter in the Authorization header of SIP requests during MD5 digest authentication, which allows remote attackers...Show more The Avaya 4602SW IP Phone (Model 4602D02A) with 2.2.2 and earlier SIP firmware does not use the cnonce parameter in the Authorization header of SIP requests during MD5 digest authentication, which allows remote attackers to conduct man-in-the-middle attacks and hijack or intercept communications.Show less