U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Vulnerability Change Records for CVE-2017-18923

Change History

Initial Analysis by NIST 8/05/2020 11:44:41 AM

Action Type Old Value New Value
Added CVSS V3.1

								
							
							
						
NIST AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Added CVSS V2

								
							
							
						
NIST (AV:N/AC:L/Au:N/C:P/I:N/A:N)
Added CWE

								
							
							
						
NIST CWE-74
Added CPE Configuration

								
							
							
						
AND
     OR
          *cpe:2.3:o:beronet:voice_over_internet_protocol_gateways_firmware:*:*:*:*:*:*:*:* versions from (including) 2.0.0 up to (excluding) 3.0.16
     OR
          cpe:2.3:h:beronet:bf16001e1box:-:*:*:*:*:*:*:*
          cpe:2.3:h:beronet:bf16001t1box:-:*:*:*:*:*:*:*
          cpe:2.3:h:beronet:bf4001e1box:-:*:*:*:*:*:*:*
          cpe:2.3:h:beronet:bf4001t1box:-:*:*:*:*:*:*:*
          cpe:2.3:h:beronet:bf64002e1box:-:*:*:*:*:*:*:*
          cpe:2.3:h:beronet:bf64002t1box:-:*:*:*:*:*:*:*
          cpe:2.3:h:beronet:bfsb1s0:-:*:*:*:*:*:*:*
          cpe:2.3:h:beronet:bfsb2hy:-:*:*:*:*:*:*:*
          cpe:2.3:h:beronet:bfsb2s0:-:*:*:*:*:*:*:*
          cpe:2.3:h:beronet:bfsb2s02xo:-:*:*:*:*:*:*:*
          cpe:2.3:h:beronet:bfsb4xo:-:*:*:*:*:*:*:*
          cpe:2.3:h:beronet:bfsb4xo4xs:-:*:*:*:*:*:*:*
          cpe:2.3:h:beronet:bfsb4xs:-:*:*:*:*:*:*:*
          cpe:2.3:h:beronet:bn16fxsfax_b:-:*:*:*:*:*:*:*
          cpe:2.3:h:beronet:bn16fxsfax_c:-:*:*:*:*:*:*:*
Changed Reference Type
https://beronet.atlassian.net/wiki/spaces/PUB/pages/88768529/Security+Issues No Types Assigned
https://beronet.atlassian.net/wiki/spaces/PUB/pages/88768529/Security+Issues Third Party Advisory
Changed Reference Type
https://www.heise.de/security/meldung/Angriffe-auf-VoIP-Gateways-von-beroNet-Patch-sorgt-fuer-Sicherheit-3594737.html No Types Assigned
https://www.heise.de/security/meldung/Angriffe-auf-VoIP-Gateways-von-beroNet-Patch-sorgt-fuer-Sicherheit-3594737.html Third Party Advisory