Primary

Context

Zenitel TCIV-3+ Out-of-Bounds Write Vulnerability Allowing Device Crash

Vulnerability

A vulnerability in Zenitel TCIV-3+ intercom devices, all versions prior to 9.3.3.0, allows for an out-of-bounds write, which could enable a remote attacker to crash the device.

Impact

Exploitation of this vulnerability can lead to a denial-of-service condition, causing the device to crash.

Remediation

Users are advised to upgrade to Zenitel TCIV-3+ Version 9.3.3.0 or later.

Added: Nov 26, 2025, 6:18 PM

Updated: Nov 26, 2025, 6:18 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

7.7

relevance

1.1

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

7.7

relevance

1.1

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Zenitel TCIV-3+ Out-of-Bounds Write Vulnerability Allowing Device Crash

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating