Skip to main content

Unified Ip Phone Firmware

4 CVEs product

Monthly

CVE-2018-0332 HIGH This Week

A vulnerability in the Session Initiation Protocol (SIP) ingress packet processing of Cisco Unified IP Phone software could allow an unauthenticated, remote attacker to cause a denial of service. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Cisco Unified Ip Phone Firmware Ip Phone Firmware
NVD
CVSS 3.0
7.5
EPSS
3.5%
CVE-2013-6685 MEDIUM This Month

The firmware on Cisco Unified IP phones 8961, 9951, and 9971 uses weak permissions for memory block devices, which allows local users to gain privileges by mounting a device with a setuid file in its. Rated medium severity (CVSS 6.6). No vendor patch available.

Privilege Escalation Cisco Unified Ip Phone Firmware Unified Ip Phone 8961 Unified Ip Phone 9951 +1
NVD
CVSS 2.0
6.6
EPSS
0.1%
CVE-2013-3468 HIGH This Week

The Cisco Unified IP Phone 8945 with software 9.3(2) allows remote attackers to cause a denial of service (device hang) via a malformed PNG file, aka Bug ID CSCud04270. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Cisco Unified Ip Phone 8945 Unified Ip Phone Firmware
NVD
CVSS 2.0
7.8
EPSS
0.9%
CVE-2012-1328 MEDIUM This Month

Cisco Unified IP Phones 9900 series devices with firmware 9.1 and 9.2 do not properly handle downloads of configuration information to an RT phone, which allows local users to gain privileges via. Rated medium severity (CVSS 4.6), this vulnerability is low attack complexity. No vendor patch available.

Code Injection Cisco RCE Unified Ip Phone Unified Ip Phone Firmware
NVD
CVSS 2.0
4.6
EPSS
0.2%
EPSS 3% CVSS 7.5
HIGH This Week

A vulnerability in the Session Initiation Protocol (SIP) ingress packet processing of Cisco Unified IP Phone software could allow an unauthenticated, remote attacker to cause a denial of service. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Cisco Unified Ip Phone Firmware +1
NVD
EPSS 0% CVSS 6.6
MEDIUM This Month

The firmware on Cisco Unified IP phones 8961, 9951, and 9971 uses weak permissions for memory block devices, which allows local users to gain privileges by mounting a device with a setuid file in its. Rated medium severity (CVSS 6.6). No vendor patch available.

Privilege Escalation Cisco Unified Ip Phone Firmware +3
NVD
EPSS 1% CVSS 7.8
HIGH This Week

The Cisco Unified IP Phone 8945 with software 9.3(2) allows remote attackers to cause a denial of service (device hang) via a malformed PNG file, aka Bug ID CSCud04270. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Cisco Unified Ip Phone 8945 +1
NVD
EPSS 0% CVSS 4.6
MEDIUM This Month

Cisco Unified IP Phones 9900 series devices with firmware 9.1 and 9.2 do not properly handle downloads of configuration information to an RT phone, which allows local users to gain privileges via. Rated medium severity (CVSS 4.6), this vulnerability is low attack complexity. No vendor patch available.

Code Injection Cisco RCE +2
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy