Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
unified ip phone vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-20265
A vulnerability in the web-based management interface of a small subset of Cisco IP Phones could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the interface on an affected device. This vulnerability is due to...
Cisco Ip Dect 110 Firmware
Cisco Ip Dect 210 Firmware
Cisco Unified Ip Phone 6901 Firmware
Cisco Unified Sip Phone 3905 Firmware
NA
CVE-2023-20078
Multiple vulnerabilities in the web-based management interface of certain Cisco IP Phones could allow an unauthenticated, remote malicious user to execute arbitrary code or cause a denial of service (DoS) condition. For more information about these vulnerabilities, see the Detail...
Cisco Ip Phone 6871 Firmware
Cisco Ip Phone 6861 Firmware
Cisco Ip Phone 6851 Firmware
Cisco Ip Phone 6841 Firmware
Cisco Ip Phone 6825 Firmware
Cisco Ip Phone 7861 Firmware
Cisco Ip Phone 7841 Firmware
Cisco Ip Phone 7832 Firmware
Cisco Ip Phone 7821 Firmware
Cisco Ip Phone 7811 Firmware
Cisco Ip Phone 8865 Firmware
Cisco Ip Phone 8861 Firmware
Cisco Ip Phone 8851 Firmware
Cisco Ip Phone 8845 Firmware
Cisco Ip Phone 8841 Firmware
Cisco Ip Phone 8832 Firmware
Cisco Ip Phone 8811 Firmware
NA
CVE-2023-20079
Multiple vulnerabilities in the web-based management interface of certain Cisco IP Phones could allow an unauthenticated, remote malicious user to execute arbitrary code or cause a denial of service (DoS) condition. For more information about these vulnerabilities, see the Detail...
Cisco Ip Phone 6871 Firmware
Cisco Ip Phone 6861 Firmware
Cisco Ip Phone 6851 Firmware
Cisco Ip Phone 6841 Firmware
Cisco Ip Phone 6825 Firmware
Cisco Ip Phone 7861 Firmware
Cisco Ip Phone 7841 Firmware
Cisco Ip Phone 7832 Firmware
Cisco Ip Phone 7821 Firmware
Cisco Ip Phone 7811 Firmware
Cisco Ip Phone 8865 Firmware
Cisco Ip Phone 8861 Firmware
Cisco Ip Phone 8851 Firmware
Cisco Ip Phone 8845 Firmware
Cisco Ip Phone 8841 Firmware
Cisco Ip Phone 8832 Firmware
Cisco Ip Phone 8811 Firmware
Cisco Ip Phone 8831 Firmware
Cisco Unified Ip Phone 7945g Firmware
Cisco Unified Ip Phone 7965g Firmware
Cisco Unified Ip Phone 7975g Firmware
NA
CVE-2023-20018
A vulnerability in the web-based management interface of Cisco IP Phone 7800 and 8800 Series Phones could allow an unauthenticated, remote malicious user to bypass authentication on an affected device. This vulnerability is due to insufficient validation of user-supplied input. A...
Cisco Ip Phone 7800 Firmware
Cisco Ip Phone 7811 Firmware
Cisco Ip Phone 7821 Firmware
Cisco Ip Phone 7832 Firmware
Cisco Ip Phone 7841 Firmware
Cisco Ip Phone 7861 Firmware
Cisco Ip Phone 8800 Firmware
Cisco Ip Phone 8811 Firmware
Cisco Ip Phone 8821 Firmware
Cisco Ip Phone 8821-ex Firmware
Cisco Ip Phone 8831 Firmware
Cisco Ip Phone 8832 Firmware
Cisco Ip Phone 8841 Firmware
Cisco Ip Phone 8845 Firmware
Cisco Ip Phone 8851 Firmware
Cisco Ip Phone 8861 Firmware
Cisco Ip Phone 8865 Firmware
Cisco Ip Phones 8832 Firmware
Cisco Unified Ip Phone 8851nr Firmware
Cisco Unified Ip Phone 8865nr Firmware
Cisco Wireless Ip Phone 8821 Firmware
Cisco Wireless Ip Phone 8821-ex Firmware
4
CVSSv2
CVE-2022-20817
A vulnerability in Cisco Unified IP Phones could allow an unauthenticated, remote malicious user to impersonate another user's phone if the Cisco Unified Communications Manager (CUCM) is in secure mode. This vulnerability is due to improper key generation during the manufact...
Cisco Unified Ip Phone 6911 Firmware -
Cisco Unified Ip Phone 6921 Firmware -
Cisco Unified Ip Phone 6941 Firmware -
Cisco Unified Ip Phone 6945 Firmware -
Cisco Unified Ip Phone 6961 Firmware -
Cisco Unified Ip Phone 8941 Firmware -
Cisco Unified Ip Phone 8945 Firmware -
Cisco Unified Ip Phone 8961 Firmware -
Cisco Unified Ip Phone 9951 Firmware -
Cisco Unified Ip Phone 9971 Firmware -
Cisco Ata 187 Analog Telephone Adapter Firmware
4.9
CVSSv2
CVE-2021-4203
A use-after-free read flaw was found in sock_getsockopt() in net/core/sock.c due to SO_PEERCRED and SO_PEERGROUPS race with listen() (and connect()) in the Linux kernel. In this flaw, an attacker with a user privileges may crash the system or leak internal kernel information.
Linux Linux Kernel 5.15
Linux Linux Kernel
Netapp Element Software -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp E-series Santricity Os Controller
Netapp Bootstrap Os -
Netapp A700s Firmware -
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H410s Firmware -
Netapp H410c Firmware -
Oracle Communications Cloud Native Core Binding Support Function 22.1.3
Oracle Communications Cloud Native Core Policy 22.2.0
Oracle Communications Cloud Native Core Network Exposure Function 22.1.1
5.8
CVSSv2
CVE-2021-20322
A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass the source port UDP randomizat...
Linux Linux Kernel
Fedoraproject Fedora 34
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Netapp Solidfire & Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp E-series Santricity Os Controller
Netapp Solidfire, Enterprise Sds & Hci Storage Node -
Netapp Fas Baseboard Management Controller Firmware -
Netapp Aff Baseboard Management Controller Firmware -
Netapp Aff A700s Firmware -
Netapp H700s Firmware -
Netapp H700e Firmware -
Netapp H500s Firmware -
Netapp H410s Firmware -
Netapp H500e Firmware -
Netapp H300e Firmware -
Netapp H300s Firmware -
Netapp Hci Compute Node Firmware -
Oracle Communications Cloud Native Core Binding Support Function 22.1.3
Oracle Communications Cloud Native Core Policy 22.2.0
Oracle Communications Cloud Native Core Network Exposure Function 22.1.1
1 Article
4.9
CVSSv2
CVE-2022-25258
An issue exists in drivers/usb/gadget/composite.c in the Linux kernel prior to 5.16.10. The USB Gadget subsystem lacks certain validation of interface OS descriptor requests (ones with a large array index and ones associated with NULL function pointer retrieval). Memory corruptio...
Linux Linux Kernel
Fedoraproject Fedora 35
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Active Iq Unified Manager -
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H410s Firmware -
Netapp H410c Firmware -
1 Github repository
2.1
CVSSv2
CVE-2022-20660
A vulnerability in the information storage architecture of several Cisco IP Phone models could allow an unauthenticated, physical malicious user to obtain confidential information from an affected device. This vulnerability is due to unencrypted storage of confidential informatio...
Cisco Ip Conference Phone 7832 Firmware
Cisco Ip Conference Phone 8832 Firmware
Cisco Ip Phone 7811 Firmware
Cisco Ip Phone 7821 Firmware
Cisco Ip Phone 7841 Firmware
Cisco Ip Phone 7861 Firmware
Cisco Ip Phone 8811 Firmware
Cisco Ip Phone 8841 Firmware
Cisco Ip Phone 8845 Firmware
Cisco Ip Phone 8851 Firmware
Cisco Ip Phone 8861 Firmware
Cisco Ip Phone 8865 Firmware
Cisco Unified Ip Conference Phone 8831 Firmware -
Cisco Unified Ip Conference Phone 8831 For Third-party Call Control Firmware -
Cisco Unified Ip Phone 7945g Firmware -
Cisco Unified Ip Phone 7965g Firmware -
Cisco Unified Ip Phone 7975g Firmware -
Cisco Unified Sip Phone 3905 Firmware
Cisco Wireless Ip Phone 8821 Firmware
Cisco Wireless Ip Phone 8821-ex Firmware
4.3
CVSSv2
CVE-2021-3449
An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_ce...
Openssl Openssl
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Freebsd Freebsd 12.2
Netapp Santricity Smi-s Provider -
Netapp Snapcenter -
Netapp Oncommand Workflow Automation -
Netapp Storagegrid -
Netapp Oncommand Insight -
Netapp Ontap Select Deploy Administration Utility -
Netapp Active Iq Unified Manager -
Netapp Cloud Volumes Ontap Mediator -
Netapp E-series Performance Analyzer -
Tenable Tenable.sc
Tenable Nessus
Tenable Nessus Network Monitor 5.11.1
Tenable Nessus Network Monitor 5.12.0
Tenable Nessus Network Monitor 5.12.1
Tenable Nessus Network Monitor 5.13.0
Tenable Nessus Network Monitor 5.11.0
Tenable Log Correlation Engine
Fedoraproject Fedora 34
5 Github repositories
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37884
CVE-2024-6003
remote
brute force
information disclosure
CVE-2024-27801
CVE-2024-30078
CVE-2024-31870
CVE-2024-6042
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »