{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-16T15:19:58.256","vulnerabilities":[{"cve":{"id":"CVE-2019-10689","sourceIdentifier":"cve@mitre.org","published":"2019-06-24T22:15:08.960","lastModified":"2024-11-21T04:19:45.497","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"VVX products using UCS software version 5.9.2 and earlier with Better Together over Ethernet Connector (BToE) application version 3.9.1 and earlier provides insufficient authentication between the BToE application and the BToE component, resulting in leakage of sensitive information."},{"lang":"es","value":"Los productos VVX que utiliza el software UCS versión 5.9.2 y anteriores, con la aplicación Better Together over Ethernet Connector (BToE) versión 3.9.1 y anteriores, proporcionan una autenticación insuficiente entre la aplicación BToE y el componente de BToE, lo que produce un filtrado de información confidencial."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:A/AC:L/Au:N/C:P/I:N/A:N","baseScore":3.3,"accessVector":"ADJACENT_NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"LOW","exploitabilityScore":6.5,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-287"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:polycom:better_together_over_ethernet_connector:*:*:*:*:*:*:*:*","versionEndIncluding":"3.9.1","matchCriteriaId":"327C8311-C854-4D47-B09D-91B0C3DD643D"},{"vulnerable":true,"criteria":"cpe:2.3:a:polycom:unified_communications_software:*:*:*:*:*:*:*:*","versionEndIncluding":"5.9.2","matchCriteriaId":"3042ADDC-F1B9-42CF-8B0B-2F46AD40F3F8"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/108799","source":"cve@mitre.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://support.polycom.com/content/dam/polycom-support/global/documentation/insufficient-authentication-leakage-vvx-products.pdf","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/108799","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://support.polycom.com/content/dam/polycom-support/global/documentation/insufficient-authentication-leakage-vvx-products.pdf","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}