22nd August 2017 by Michael Mimoso
Fuze, a maker of popular enterprise-grade voice-over-IP handsets, earlier this year patched three vulnerabilities that exposed user account information and enabled unauthorized authentication.
The issues were made public today by researchers at Rapid7 who privately disclosed the flaws on April 12. Fuze turned around fixes for each of the vulnerabilities by May 6, but public disclosure was delayed until today.
Full Article.
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.