CVE-2020-27639
18.12.2020, 08:15
The Bluetooth handset of Mitel MiVoice 6873i, 6930, and 6940 SIP phones with firmware before 5.1.0.SP6 could allow an unauthenticated attacker within Bluetooth range to pair a rogue Bluetooth device when a phone handset loses connection, due to an improper pairing mechanism. A successful exploit could allow an attacker to eavesdrop on conversations.Enginsight
| Vendor | Product | Version |
|---|---|---|
| mitel | 6873i_sip_firmware | 𝑥 < 5.1.0 |
| mitel | 6873i_sip_firmware | 5.1.0 |
| mitel | 6873i_sip_firmware | 5.1.0:sp1 |
| mitel | 6873i_sip_firmware | 5.1.0:sp2 |
| mitel | 6873i_sip_firmware | 5.1.0:sp3 |
| mitel | 6873i_sip_firmware | 5.1.0:sp4 |
| mitel | 6873i_sip_firmware | 5.1.0:sp5 |
| mitel | 6930_sip_firmware | 𝑥 < 5.1.0 |
| mitel | 6930_sip_firmware | 5.1.0 |
| mitel | 6930_sip_firmware | 5.1.0:sp1 |
| mitel | 6930_sip_firmware | 5.1.0:sp2 |
| mitel | 6930_sip_firmware | 5.1.0:sp3 |
| mitel | 6930_sip_firmware | 5.1.0:sp4 |
| mitel | 6930_sip_firmware | 5.1.0:sp5 |
| mitel | 6940_sip_firmware | 𝑥 < 5.1.0 |
| mitel | 6940_sip_firmware | 5.1.0 |
| mitel | 6940_sip_firmware | 5.1.0:sp1 |
| mitel | 6940_sip_firmware | 5.1.0:sp2 |
| mitel | 6940_sip_firmware | 5.1.0:sp3 |
| mitel | 6940_sip_firmware | 5.1.0:sp4 |
| mitel | 6940_sip_firmware | 5.1.0:sp5 |
𝑥
= Vulnerable software versions