{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-11T02:46:41.044","vulnerabilities":[{"cve":{"id":"CVE-2022-29855","sourceIdentifier":"cve@mitre.org","published":"2022-05-11T20:15:08.787","lastModified":"2024-11-21T06:59:49.933","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Mitel 6800 and 6900 Series SIP phone devices through 2022-04-27 have \"undocumented functionality.\" A vulnerability in Mitel 6800 Series and 6900 Series SIP phones excluding 6970, versions 5.1 SP8 (5.1.0.8016) and earlier, and 6.0 (6.0.0.368) through 6.1 HF4 (6.1.0.165), could allow a unauthenticated attacker with physical access to the phone to gain root access due to insufficient access control for test functionality during system startup. A successful exploit could allow access to sensitive information and code execution."},{"lang":"es","value":"Los dispositivos telefónicos SIP de las series 6800 y 6900 de Mitel versiones hasta 27-04-2022, presentan una \"funcionalidad no documentada\". Una vulnerabilidad en los teléfonos SIP de las series 6800 y 6900 de Mitel, excepto el 6970, versiones 5.1 SP8 (5.1.0.8016) y anteriores, y 6.0 (6.0.0.368) hasta 6.1 HF4 (6.1.0.165), podría permitir a un atacante no autenticado con acceso físico al teléfono conseguir acceso root debido a un control de acceso insuficiente para la funcionalidad test durante el inicio del sistema. Una explotación con éxito podría permitir el acceso a información confidencial y una ejecución de código"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":6.8,"baseSeverity":"MEDIUM","attackVector":"PHYSICAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":0.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:L/Au:N/C:C/I:C/A:C","baseScore":7.2,"accessVector":"LOCAL","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":3.9,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:mitel:6873i_sip_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"5.1.0.8017","matchCriteriaId":"C7678AC8-4893-4BDD-9554-981AF85BC539"},{"vulnerable":true,"criteria":"cpe:2.3:o:mitel:6873i_sip_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"6.0.0.368","versionEndExcluding":"6.1.0.171","matchCriteriaId":"79B6E80D-966B-41E7-A781-92F550C3CBEA"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:mitel:6873i_sip:-:*:*:*:*:*:*:*","matchCriteriaId":"3C298A98-C6CE-4AEB-AD9F-FFCFA1E865F6"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:mitel:6930_sip_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"5.1.0.8017","matchCriteriaId":"6218C45A-65E9-45F1-AF5C-811E51E5EF76"},{"vulnerable":true,"criteria":"cpe:2.3:o:mitel:6930_sip_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"6.0.0.368","versionEndExcluding":"6.1.0.171","matchCriteriaId":"8B8E11E6-EC37-4DFB-9934-EEC7660A501C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:mitel:6930_sip:-:*:*:*:*:*:*:*","matchCriteriaId":"1837336E-7A1D-414C-B888-56350AF6C32A"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:mitel:6940_sip_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"5.1.0.8017","matchCriteriaId":"607AF439-9645-420A-A18C-F62798DA2E1A"},{"vulnerable":true,"criteria":"cpe:2.3:o:mitel:6940_sip_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"6.0.0.368","versionEndExcluding":"6.1.0.171","matchCriteriaId":"5602A412-65CE-4489-BDCA-AB29B0090BB4"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:mitel:6940_sip:-:*:*:*:*:*:*:*","matchCriteriaId":"05422EAF-9528-48CE-972C-9DF111F91570"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:mitel:6865i_sip_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"5.1.0.8017","matchCriteriaId":"5BB793AC-4B34-4F79-8B7A-FD30BE70686C"},{"vulnerable":true,"criteria":"cpe:2.3:o:mitel:6865i_sip_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"6.0.0.368","versionEndExcluding":"6.1.0.171","matchCriteriaId":"A9B9FDAE-DBB6-4247-A7B7-BA57EA4159D7"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:mitel:6865i_sip:-:*:*:*:*:*:*:*","matchCriteriaId":"0AAFF6ED-44F6-4D3B-99EA-0F8FE58EC34B"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:mitel:6867i_sip_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"5.1.0.8017","matchCriteriaId":"82EFCE42-5AFF-469A-B3C0-2C1648738FB9"},{"vulnerable":true,"criteria":"cpe:2.3:o:mitel:6867i_sip_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"6.0.0.368","versionEndExcluding":"6.1.0.171","matchCriteriaId":"F11C5CB6-4A4F-4431-831F-2BFB46146938"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:mitel:6867i_sip:-:*:*:*:*:*:*:*","matchCriteriaId":"4942E820-8103-4763-8715-F1301F233B05"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:mitel:6869i_sip_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"5.1.0.8017","matchCriteriaId":"1E0A50DB-183F-447D-8C51-CD1478332413"},{"vulnerable":true,"criteria":"cpe:2.3:o:mitel:6869i_sip_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"6.0.0.368","versionEndExcluding":"6.1.0.171","matchCriteriaId":"F3441C82-7A63-4FDA-B9BE-54E6AC328592"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:mitel:6869i_sip:-:*:*:*:*:*:*:*","matchCriteriaId":"654554ED-253C-4928-92D0-92EADF5F4768"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:mitel:6920_sip_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"5.1.0.8016","matchCriteriaId":"121C5EB0-A486-4436-AAA5-F937CE9D6ABE"},{"vulnerable":true,"criteria":"cpe:2.3:o:mitel:6920_sip_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"6.0.0.368","versionEndIncluding":"6.1.0.165","matchCriteriaId":"EC5688B5-BE5E-4117-AB14-C2F0E23B1410"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:mitel:6920_sip:-:*:*:*:*:*:*:*","matchCriteriaId":"F8084E6D-1382-4785-9D01-0111A04B233A"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:mitel:6910_sip_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"5.1.0.8016","matchCriteriaId":"30C235F9-1622-4256-AE68-A58C5F4B7BAB"},{"vulnerable":true,"criteria":"cpe:2.3:o:mitel:6910_sip_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"6.0.0.368","versionEndIncluding":"6.1.0.165","matchCriteriaId":"EE4D1C46-208E-4D16-9F22-2AFCDEF8C65A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:mitel:6910_sip:-:*:*:*:*:*:*:*","matchCriteriaId":"412A5856-40B0-4633-B0F6-D87D3DB85BE5"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:mitel:6905_sip_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"5.1.0.8016","matchCriteriaId":"2A077047-BA41-4FF5-8767-CC17EE94AA74"},{"vulnerable":true,"criteria":"cpe:2.3:o:mitel:6905_sip_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"6.0.0.368","versionEndIncluding":"6.1.0.165","matchCriteriaId":"C1C20941-8A80-40C8-814E-49E11609EE77"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:mitel:6905_sip:-:*:*:*:*:*:*:*","matchCriteriaId":"97CB43CD-3B53-4839-9AE4-67024A276305"}]}]}],"references":[{"url":"http://packetstormsecurity.com/files/167547/Mitel-6800-6900-Series-SIP-Phones-Backdoor-Access.html","source":"cve@mitre.org","tags":["Exploit","Third Party Advisory","VDB Entry"]},{"url":"http://seclists.org/fulldisclosure/2022/Jun/32","source":"cve@mitre.org","tags":["Exploit","Mailing List","Third Party Advisory"]},{"url":"https://www.mitel.com/support/security-advisories","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-22-0004","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"https://www.syss.de/pentest-blog/undocumented-functionality-backdoor-in-mitel-desk-phones-syss-2022-021","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"http://packetstormsecurity.com/files/167547/Mitel-6800-6900-Series-SIP-Phones-Backdoor-Access.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory","VDB Entry"]},{"url":"http://seclists.org/fulldisclosure/2022/Jun/32","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Mailing List","Third Party Advisory"]},{"url":"https://www.mitel.com/support/security-advisories","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-22-0004","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://www.syss.de/pentest-blog/undocumented-functionality-backdoor-in-mitel-desk-phones-syss-2022-021","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}}]}