CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
77.4%
Heap-based buffer overflow in Cisco Unified IP Phone 7940, 7940G, 7960, and 7960G running SIP firmware might allow remote SIP servers to execute arbitrary code via a crafted challenge/response message.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | unified_ip_phone | 7906g | cpe:2.3:h:cisco:unified_ip_phone:7906g:*:*:*:*:*:*:* |
cisco | unified_ip_phone | 7911g | cpe:2.3:h:cisco:unified_ip_phone:7911g:*:*:*:*:*:*:* |
cisco | unified_ip_phone | 7935 | cpe:2.3:h:cisco:unified_ip_phone:7935:*:*:*:*:*:*:* |
cisco | unified_ip_phone | 7936 | cpe:2.3:h:cisco:unified_ip_phone:7936:*:*:*:*:*:*:* |
cisco | unified_ip_phone | 7940 | cpe:2.3:h:cisco:unified_ip_phone:7940:*:*:*:*:*:*:* |
cisco | unified_ip_phone | 7940g | cpe:2.3:h:cisco:unified_ip_phone:7940g:*:*:*:*:*:*:* |
cisco | unified_ip_phone | 7941g | cpe:2.3:h:cisco:unified_ip_phone:7941g:*:*:*:*:*:*:* |
cisco | unified_ip_phone | 7960 | cpe:2.3:h:cisco:unified_ip_phone:7960:*:*:*:*:*:*:* |
cisco | unified_ip_phone | 7960g | cpe:2.3:h:cisco:unified_ip_phone:7960g:*:*:*:*:*:*:* |
cisco | unified_ip_phone | 7961g | cpe:2.3:h:cisco:unified_ip_phone:7961g:*:*:*:*:*:*:* |