A critical vulnerability in Slican telephone exchanges allows unauthenticated attackers to predictably generate administrative secure keys, enabling full system compromise. The flaw stems from deterministic key generation using exchange properties obtainable without authentication. Affected systems include IPx series, CCT-1668, MAC-6400, and CXS-0424 models. Patched versions are available for supported ha [truncated]
A critical authentication bypass vulnerability in Slican telephone exchanges allows unauthenticated attackers to gain administrative access by executing a specific command, bypassing credential requirements entirely. The vulnerability affects multiple product lines with CVSS 4.0 vector indicating network attack vector, low attack complexity, no privileges required, and high impact across confidentiality, [truncated]
