A vulnerability in the web server for Cisco IP Phones could allow an unauthenticated, remote malicious user to execute code with root privileges or cause a reload of an affected IP phone, resulting in a denial of service (DoS) condition. The vulnerability is due to a lack of proper input validation of HTTP requests. An attacker could exploit this vulnerability by sending a crafted HTTP request to the web server of a targeted device. A successful exploit could allow the malicious user to remotely execute code with root privileges or cause a reload of an affected IP phone, resulting in a DoS condition.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco ip phone 8865 firmware 10.3(1)es14 |
||
cisco ip phone 8865 firmware 11.0(1) |
||
cisco ip phone 8865 firmware 11.0(5)sr1 |
||
cisco ip phone 8851 firmware 10.3(1)es14 |
||
cisco ip phone 8851 firmware 11.0(1) |
||
cisco ip phone 8851 firmware 11.0(5)sr1 |
||
cisco ip phone 7841 firmware 11.0(1) |
||
cisco ip phone 7821 firmware 11.0(1) |
||
cisco ip phone 8811 firmware 10.3(1)es14 |
||
cisco ip phone 8811 firmware 11.0(1) |
||
cisco ip phone 8811 firmware 11.0(5)sr1 |
||
cisco ip phone 8861 firmware 10.3(1)es14 |
||
cisco ip phone 8861 firmware 11.0(1) |
||
cisco ip phone 8861 firmware 11.0(5)sr1 |
||
cisco ip phone 8845 firmware 10.3(1)es14 |
||
cisco ip phone 8845 firmware 11.0(1) |
||
cisco ip phone 8845 firmware 11.0(5)sr1 |
||
cisco ip phone 7861 firmware 11.0(1) |
||
cisco ip phone 8841 firmware 10.3(1)es14 |
||
cisco ip phone 8841 firmware 11.0(1) |
||
cisco ip phone 8841 firmware 11.0(5)sr1 |
||
cisco ip phone 7811 firmware 11.0(1) |
||
cisco ip phone 8821 firmware 10.3(1)es14 |
||
cisco ip phone 8821 firmware 11.0(1) |
||
cisco ip phone 8821 firmware 11.0(5)sr1 |
||
cisco ip phone 8821-ex firmware 10.3(1)es14 |
||
cisco ip phone 8821-ex firmware 11.0(1) |
||
cisco ip phone 8821-ex firmware 11.0(5)sr1 |
||
cisco 8831 firmware 10.3(1)es14 |
||
cisco 8831 firmware 11.0(1) |
||
cisco 8831 firmware 11.0(5)sr1 |