unified ip phone vulnerabilities and exploits

(subscribe to this query)

4.6

CVSSv2

Cisco Unified IP Phones 9900 series devices with firmware 9.1 and 9.2 do not properly handle downloads of configuration information to an RT phone, which allows local users to gain privileges via unspecified injected data, aka Bug ID CSCts32237.

Cisco Unified Ip Phone 9900 Cisco Unified Ip Phone Firmware 9.1 Cisco Unified Ip Phone Firmware 9.2

7.1

CVSSv2

Cisco Unified IP Phone (aka SIP phone) 7960G and 7940G with firmware P0S3-08-9-00 and possibly other versions prior to 8.10 allows remote malicious users to cause a denial of service (device reboot) or possibly execute arbitrary code via a Realtime Transport Protocol (RTP) packet...

Cisco Unified Ip Phone 7940g Cisco Unified Ip Phone 7960g

7.8

CVSSv2

The Cisco Unified IP Phone 8945 with software 9.3(2) allows remote malicious users to cause a denial of service (device hang) via a malformed PNG file, aka Bug ID CSCud04270.

Cisco Unified Ip Phone 8945 -Cisco Unified Ip Phone Firmware 9.3

4

CVSSv2

A vulnerability in Cisco Unified IP Phones could allow an unauthenticated, remote malicious user to impersonate another user's phone if the Cisco Unified Communications Manager (CUCM) is in secure mode. This vulnerability is due to improper key generation during the manufact...

Cisco Unified Ip Phone 6911 Firmware -Cisco Unified Ip Phone 6921 Firmware -Cisco Unified Ip Phone 6941 Firmware -Cisco Unified Ip Phone 6945 Firmware -Cisco Unified Ip Phone 6961 Firmware -Cisco Unified Ip Phone 8941 Firmware -Cisco Unified Ip Phone 8945 Firmware -Cisco Unified Ip Phone 8961 Firmware -Cisco Unified Ip Phone 9951 Firmware -Cisco Unified Ip Phone 9971 Firmware -Cisco Ata 187 Analog Telephone Adapter Firmware

3.5

CVSSv2

The HTTP daemon in the Cisco Unified IP Phone, when the Extension Mobility feature is enabled, allows remote authenticated users of other phones associated with the same CUCM server to eavesdrop on the physical environment via a CiscoIPPhoneExecute message containing a URL attrib...

Cisco Unified Ip Phone

6.1

CVSSv2

A vulnerability in the Cisco Discovery Protocol or Link Layer Discovery Protocol (LLDP) implementation for the Cisco IP Phone 7800 and 8800 Series could allow an unauthenticated, adjacent malicious user to cause an affected phone to reload unexpectedly, resulting in a temporary d...

Cisco Ip Phone 8800 Firmware Cisco Ip Phone 7800 Firmware Cisco Ip Conference Phone 7832 Firmware Cisco Ip Conference Phone 8832 Firmware Cisco Ip Phone 7811 Firmware Cisco Ip Phone 7821 Firmware Cisco Ip Phone 7841 Firmware Cisco Ip Phone 7861 Firmware Cisco Ip Phone 8811 Firmware Cisco Ip Phone 8841 Firmware Cisco Ip Phone 8845 Firmware Cisco Ip Phone 8851 Firmware Cisco Ip Phone 8861 Firmware Cisco Ip Phone 8865 Firmware

4.3

CVSSv2

The Cisco Unified IP Phone 7960G 9.2(1) and previous versions allows remote malicious users to bypass authentication and change trust relationships by injecting a Certificate Trust List (CTL) file, aka Bug ID CSCuj66795.

Cisco Unified Ip Phone 7960g

7.1

CVSSv2

Cisco 9900 fourth-generation IP phones do not properly perform SDP negotiation, which allows remote malicious users to cause a denial of service (device reboot) via crafted SDP packets, aka Bug ID CSCuf06698.

Cisco Unified Ip Phone 9971 Cisco Unified Ip Phone 9951

NA

Multiple vulnerabilities in the Cisco Discovery Protocol and Link Layer Discovery Protocol (LLDP) implementations for Cisco IP Phone Series 68xx/78xx/88xx could allow an unauthenticated, adjacent attacker to execute code remotely or cause a reload of an affected IP phone. These v...

Get Started

1 2 3 4 5 6 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook