A vulnerability in the information storage architecture of several Cisco IP Phone models could allow an unauthenticated, physical malicious user to obtain confidential information from an affected device. This vulnerability is due to unencrypted storage of confidential information on an affected device. An attacker could exploit this vulnerability by physically extracting and accessing one of the flash memory chips. A successful exploit could allow the malicious user to obtain confidential information from the device, which could be used for subsequent attacks.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco ip_conference_phone_7832_firmware |
||
cisco ip_conference_phone_8832_firmware |
||
cisco ip_phone_7811_firmware |
||
cisco ip_phone_7821_firmware |
||
cisco ip_phone_7841_firmware |
||
cisco ip_phone_7861_firmware |
||
cisco ip_phone_8811_firmware |
||
cisco ip_phone_8841_firmware |
||
cisco ip_phone_8845_firmware |
||
cisco ip_phone_8851_firmware |
||
cisco ip_phone_8861_firmware |
||
cisco ip_phone_8865_firmware |
||
cisco unified_ip_conference_phone_8831_firmware - |
||
cisco unified_ip_conference_phone_8831_for_third-party_call_control_firmware - |
||
cisco unified_ip_phone_7945g_firmware - |
||
cisco unified_ip_phone_7965g_firmware - |
||
cisco unified_ip_phone_7975g_firmware - |
||
cisco unified_sip_phone_3905_firmware |
||
cisco wireless_ip_phone_8821_firmware |
||
cisco wireless_ip_phone_8821-ex_firmware |