CVE-2005-3723
CVE-2005-3723 is a high-severity vulnerability in Hitachi Ip5000 Voip Wifi Phone with a CVSS 2.0 base score of 7.5. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low.
Key facts
- Severity: High (CVSS 2.0 base score 7.5)
- EPSS exploit prediction: 2% (72nd percentile)
- Actively exploited: Not listed in CISA KEV
- Affected product: Hitachi Ip5000 Voip Wifi Phone
- Published:
- Last modified:
Description
Hitachi IP5000 VOIP WIFI Phone 1.5.6 does not allow the user to disable access to (1) SNMP or (2) TCP port 3390, which allows remote attackers to modify configuration using CVE-2005-3722, or access the Unidata Shell to obtain sensitive information or cause a denial of service.
Frequently asked questions
- What is CVE-2005-3723?
- Hitachi IP5000 VOIP WIFI Phone 1.5.6 does not allow the user to disable access to (1) SNMP or (2) TCP port 3390, which allows remote attackers to modify configuration using CVE-2005-3722, or access the Unidata Shell to obtain sensitive information or cause a denial of service.
- How severe is CVE-2005-3723?
- CVE-2005-3723 has a CVSS 2.0 base score of 7.5, rated high severity.
- Is CVE-2005-3723 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 2% (72nd percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2005-3723?
- CVE-2005-3723 affects Hitachi Ip5000 Voip Wifi Phone. See the affected-products list for the exact vulnerable versions.
- How do I fix CVE-2005-3723?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround. Given its high severity, prioritise patching exposed systems.
- When was CVE-2005-3723 published?
- CVE-2005-3723 was published on 2005-11-21 and last updated on 2026-06-16.
References
- http://marc.info/?l=full-disclosure&m=113217425618951&w=2
- http://secunia.com/advisories/17628
- http://www.hitachi-cable.co.jp/ICSFiles/infosystem/security/76659792_e.pdf
Affected products (1)
- cpe:2.3:h:hitachi:ip5000_voip_wifi_phone:1.5.6:*:*:*:*:*:*:*
More vulnerabilities in Hitachi Ip5000 Voip Wifi Phone
- CVE-2005-3722 — High (CVSS 7.5): The SNMP v1/v2c daemon in Hitachi IP5000 VOIP WIFI Phone 1.5.6 allows remote attackers to gain read or write access to…
- CVE-2005-3720 — Medium (CVSS 5.0): The default index page in the HTTP server in Hitachi IP5000 VOIP WIFI Phone 1.5.6 lists sensitive information such as…
- CVE-2005-3721 — Medium (CVSS 5.0): The default configuration of the HTTP server in Hitachi IP5000 VOIP WIFI Phone 1.5.6 does not require authentication…
- CVE-2005-3719 — Medium (CVSS 4.6): Hitachi IP5000 VOIP WIFI Phone 1.5.6 has a hard-coded administrator password of "0000", which allows attackers with…