Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
unified ip phone vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv2
CVE-2015-0603
Cisco Unified IP 9900 phones with firmware 9.4(.1) and previous versions use weak permissions for unspecified files, which allows local users to cause a denial of service (persistent hang or reboot) by writing to a phone's filesystem, aka Bug ID CSCup90474.
Cisco Unified Ip Phones 9900 Series Firmware
5
CVSSv2
CVE-2015-0602
The mobility extension on Cisco Unified IP 9900 phones with firmware 9.4(.1) and previous versions allows remote malicious users to obtain sensitive information by sniffing the network, aka Bug ID CSCuq12117.
Cisco Unified Ip Phones 9900 Series Firmware
7.1
CVSSv2
CVE-2015-4226
The packet-storing feature on Cisco 9900 phones with firmware 9.3(2) does not properly support the RTP protocol, which allows remote malicious users to cause a denial of service (device hang) by sending malformed RTP packets after a call is answered, aka Bug ID CSCur39976.
Cisco Unified Ip Phones 9900 Series Firmware 9.3\\(2\\)
4.3
CVSSv2
CVE-2018-15434
A vulnerability in the web-based management interface of Cisco Unified IP Phone 7900 Series could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. The vulnera...
Cisco Skinny Client Control Protocol Software 9.4\\(2\\)
5
CVSSv2
CVE-2013-5532
Buffer overflow in the web-application interface on Cisco 9900 IP phones allows remote malicious users to cause a denial of service (webapp interface outage) via long values in unspecified fields, aka Bug ID CSCuh10343.
Cisco Unified Ip Phones 9900 Series Firmware -
Cisco Unified Ip Phone 9951
Cisco Unified Ip Phone 9971
4.6
CVSSv2
CVE-2015-0601
Cisco Unified IP 9900 phones with firmware 9.4(.1) and previous versions allow local users to cause a denial of service (device reload) via crafted commands, aka Bug ID CSCup92790.
Cisco Unified Ip Phones 9971 Firmware
Cisco Unified Ip Phones 9951 Firmware
5
CVSSv2
CVE-2015-0604
The web framework on Cisco Unified IP 9900 phones with firmware 9.4(.1) and previous versions allows remote malicious users to upload files to arbitrary locations on a phone's filesystem via crafted HTTP requests, aka Bug ID CSCup90424.
Cisco Unified Ip Phones 9971 Firmware 9.4\\(.1\\)
Cisco Unified Ip Phones 9951 Firmware 9.4\\(.1\\)
5
CVSSv2
CVE-2018-0332
A vulnerability in the Session Initiation Protocol (SIP) ingress packet processing of Cisco Unified IP Phone software could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition. The vulnerability is due to a lack of flow-control mechanisms ...
Cisco Unified Ip Phone Firmware 9.9\\(9.99002.1\\)
Cisco Ip Phone Firmware 9.4\\(2\\)sr3.1
Cisco Ip Phone Firmware 9.4\\(2\\)sr4
7.8
CVSSv2
CVE-2015-0751
Cisco IP Phone 7861, when firmware from Cisco Unified Communications Manager 10.3(1) is used, allows remote malicious users to cause a denial of service via crafted packets, aka Bug ID CSCus81800.
Cisco Unified Communications Manager 10.3\\(1\\)
7.8
CVSSv2
CVE-2015-6360
The encryption-processing feature in Cisco libSRTP prior to 1.5.3 allows remote malicious users to cause a denial of service via crafted fields in SRTP packets, aka Bug ID CSCux00686.
Cisco Ios Xe 3.10s 3.10.2ts
Cisco Ios Xe 3.14s 3.14.0s
Cisco Ios Xe 3.10s 3.10.2s
Cisco Ios Xe 3.15s 3.15.2s
Cisco Ios Xe 3.15s 3.15.1s
Cisco Ios Xe 3.10s 3.10.1xbs
Cisco Ios Xe 3.10s 3.10.1s
Cisco Ios Xe 3.10s 3.10.0s
Cisco Ios Xe 3.10s 3.10.6s
Cisco Ios Xe 3.11s 3.11.3s
Cisco Ios Xe 3.11s 3.11.2s
Cisco Ios Xe 3.13s 3.13.4s
Cisco Ios Xe 3.11s 3.11.1s
Cisco Ios Xe 3.11s 3.11.4s
Cisco Ios Xe 3.10s 3.10.5s
Cisco Ios Xe 3.10s 3.10.7s
Cisco Ios Xe 3.13s 3.13.1s
Cisco Ios Xe 3.13s 3.13.0s
Cisco Ios Xe 3.10s 3.10.4s
Cisco Ios Xe 3.11s 3.11.0s
Cisco Webex Meeting Center Base
Cisco Unified Ip Phone 8900 Series Firmware 9.0\\(3\\)
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »