Vulnerability Details : CVE-2007-3440

The Snom 320 SIP Phone, running snom320 linux 3.25, snom320-SIP 6.2.3, and snom320 jffs23.36, allows remote attackers to place calls to arbitrary phone numbers via certain requests to the web server on port 1800.

Published 2007-06-27 00:30:00

Updated 2008-11-15 06:52:37

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2007-3440

Probability of exploitation activity in the next 30 days: 0.87%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 80 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2007-3440

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Source
6.4	MEDIUM	AV:N/AC:L/Au:N/C:N/I:P/A:P	10.0	4.9	[email protected]
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: Partial

References for CVE-2007-3440

Products affected by CVE-2007-3440

Snom » Snom 320 Linux » Version: 3.25
cpe:2.3:o:snom:snom_320_linux:3.25:*:*:*:*:*:*:*
Matching versions
When used together with: Snom » 320 Sip Phone
When used together with: Snom » 320 Sip Phone » Version: Jffs23.36
When used together with: Snom » 320 Sip Phone » Version: Sip 6.2.3