Vulnerability Details : CVE-2007-1820
Nortel Networks CallPilot and Meridian Mail voicemail systems, when a mailbox has auto logon enabled, allow remote attackers to retrieve or remove messages, or reconfigure the mailbox, by spoofing Calling Number Identification (CNID, aka Caller ID).
Exploit prediction scoring system (EPSS) score for CVE-2007-1820
Probability of exploitation activity in the next 30 days: 1.16%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 83 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2007-1820
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
9.3
|
HIGH | AV:N/AC:M/Au:N/C:C/I:C/A:C |
8.6
|
10.0
|
NIST |
References for CVE-2007-1820
-
http://www.kb.cert.org/vuls/id/726548
US Government Resource
-
http://www.kb.cert.org/vuls/id/AAMN-5N2QFX
Products affected by CVE-2007-1820
- cpe:2.3:a:nortel:callpilot:*:*:*:*:*:*:*:*
- cpe:2.3:a:nortel:meridian_mail:*:*:*:*:*:*:*:*