[Japanese]

JVNDB-2021-000110

UNIVERGE DT Series vulnerable to missing encryption of sensitive data

Overview

UNIVERGE IP Phone DT Series and PC tools for DT Series maintainers (IP Phone Manager and Data Maintenance Tool) provided by NEC Platforms, Ltd. contain a missing encryption vulnerability (CWE-311).

NEC Platforms, Ltd. reported this vulnerability to IPA to notify users of its solutions through JVN. JPCERT/CC and NEC Platforms, Ltd. coordinated under the Information Security Early Warning Partnership.
CVSS Severity (What is CVSS?)

CVSS V3 Severity:
Base Metrics 3.1 (Low) [IPA Score]
  • Attack Vector: Adjacent Network
  • Attack Complexity: High
  • Privileges Required: None
  • User Interaction: None
  • Scope: Unchanged
  • Confidentiality Impact: Low
  • Integrity Impact: None
  • Availability Impact: None
CVSS V2 Severity:
Base Metrics 1.8 (Low) [IPA Score]
  • Access Vector: Adjacent Network
  • Access Complexity: High
  • Authentication: None
  • Confidentiality Impact: Partial
  • Integrity Impact: None
  • Availability Impact: None
Affected Products


NEC Platforms, Ltd.
  • UNIVERGE DT800 Series (DT820) ITY-6D-1(BK)TEL V3.2.7.0 and prior
  • UNIVERGE DT800 Series (DT820) ITY-8LDX-1(BK)TEL V3.2.7.0 and prior
  • UNIVERGE DT800 Series (DT820) ITY-8LDX-1(BK)TEL (OpEx) V3.2.7.0 and prior
  • UNIVERGE DT800 Series (DT820) ITY-8LCGX-1(BK)TEL V3.2.7.0 and prior
  • UNIVERGE DT800 Series (DT820) ITY-6DG-1A(BK)TEL V3.2.7.0 and prior
  • UNIVERGE DT800 Series (DT820) ITY-6D-1P(BK)TEL V3.2.7.0 and prior
  • UNIVERGE DT800 Series (DT820) ITY-6DG-1P(BK)TEL V3.2.7.0 and prior
  • UNIVERGE DT800 Series (DT820) ITY-8LDX-1P(BK)TEL V3.2.7.0 and prior
  • UNIVERGE DT800 Series (DT820) ITY-32LDG-1P(BK)TEL V3.2.7.0 and prior
  • UNIVERGE DT800 Series (DT820) ITY-8LCGX-1P(BK)TEL V3.2.7.0 and prior
  • UNIVERGE DT800 Series (DT820) ITY-32LCG-1P(BK)TEL V3.2.7.0 and prior
  • UNIVERGE DT800 Series (DT820) ITY-6D-1P(BK)TEL for China V3.2.7.0 and prior
  • UNIVERGE DT800 Series (DT820) ITY-6DG-1P(BK)TEL for China V3.2.7.0 and prior
  • UNIVERGE DT800 Series (DT820) ITY-8LDX-1P(BK)TEL for China V3.2.7.0 and prior
  • UNIVERGE DT800 Series (DT820) ITY-32LDG-1P(BK)TEL for China V3.2.7.0 and prior
  • UNIVERGE DT800 Series (DT820) ITY-8LCGX-1P(BK)TEL for China V3.2.7.0 and prior
  • UNIVERGE DT800 Series (DT820) ITY-32LCG-1P(BK)TEL for China V3.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-12D-1D(WH/BK)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-24D-1D(WH/BK)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-32D-1D(WH)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-24PA-1D(WH)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-24PD-1D(WH)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-12D-2D(WH/BK)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-24D-2D(WH/BK)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-32D-2D(WH)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-24PA-2D(WH)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-24PD-2D(WH)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-24DG-2D(WH/BK)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-24CG-2D(WH/BK)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-24PAG-2D(WH)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-24PDG-2D(WH)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-32DLK-2D(WH)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-12D-3(WH/BK)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-24D-3(WH/BK)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-8LD-3(WH/BK)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-8LDG-3(WH/BK)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-12DG-3(BK)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-12CG-3(BK)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-24D-3A(BK)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-8LDG-3A(BK)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-24DG-3A(WH/BK)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-24CG-3A(BK)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-12D-3P(WH/BK)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-24D-3P(WH/BK)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-8LDG-3P(WH/BK)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-12DG-3P(WH/BK)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-12CG-3P(WH/BK)TEL V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-12D-3P(WH/BK)TEL for China V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-24D-3P(WH/BK)TEL for China V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-8LDG-3P(WH/BK)TEL for China V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-12DG-3P(WH/BK)TEL for China V5.2.7.0 and prior
  • UNIVERGE DT800 Series (DT830) ITZ-12CG-3P(WH/BK)TEL for China V5.2.7.0 and prior
  • UNIVERGE DT900 Series (DT920) ITK-6DG-1D(WH/BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT920) ITK-12DG-1D(WH)TEL(R) V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT920) ITK-32LCG-1D(WH/BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT920) ITK-6D-1(BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT920) ITK-12D-1(BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT920) ITK-8LCX-1(BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT920) ITK-6DG-1A(BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT920) ITK-32LCG-1A(BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT920) ITK-6D-1P(BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT920) ITK-6DG-1P(BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT920) ITK-12D-1P(BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT920) ITK-12DG-1P(BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT920) ITK-8LCX-1P(BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT920) ITK-8LCG-1P(BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT920) ITK-32LCG-1P(BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT920) ITK-6D-1U(BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT920) ITK-6DG-1U(BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT920) ITK-12D-1U(BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT920) ITK-12DG-1U(BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT930) ITK-12CG-1D(WH/BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT930) ITK-24CG-1D(WH/BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT930) ITK-32CG-1D(WH)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT930) ITK-32TCG-1D(WH/BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT930) ITK-24CG-1(WH/BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT930) ITK-8TCGX-1(BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT930) ITK-24CG-1A(BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT930) ITK-32TCG-1A(BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT930) ITK-24CG-1P(WH/BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT930) ITK-8TCGX-1P(BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT930) ITK-32TCGX-1P(BK)TEL V2.4.0.0 and prior
  • UNIVERGE DT900 Series (DT930) ITK-24CG-1U(WH/BK)TEL V2.4.0.0 and prior
  • PC Tool IP Phone Manager V8.9.1 and prior
  • PC tool Data Maintenance Tool for DT800 Series V4.2.0.0 and prior
  • PC tool Data Maintenance Tool for DT900 Series V5.3.0.0 and prior

Impact

If a remote attacker who can access to the internal network setting the product analyzes packets while using the IP Phone Manager or Data Maintenance Tool, the phone configuration information may be obtained. Furthermore, the obtained configuration information may be abused to alter the phone configuration information, which may lead to the IP Phones unusable.
Solution

[Update the Software]
Update the software to the latest version according to the information provided by the developer.

[Apply Workarounds]
The following workarounds may avoid the impacts of this vulnerability.
  • Operate and manage internal network properly to prevent packet capture

  • Manage the utilization purpose and records properly to prevent IP Phone Manager or Data Maintenance Tool from not being used beyond the maintenance purposes.
Vendor Information

NEC Platforms, Ltd.
CWE (What is CWE?)

  1. Cryptographic Issues(CWE-310) [IPA Evaluation]
CVE (What is CVE?)

  1. CVE-2021-44746
References

  1. JVN : JVN#13464252
Revision History

  • [2021/12/17]
      Web page was published

Date Public2021/12/17
Date First Published2021/12/17
Date Last Updated2021/12/17