CVE-2015-0670

2015-03-21T01:59:00
ID CVE-2015-0670
Type cve
Reporter cve@mitre.org
Modified 2015-10-22T14:40:00

Description

The default configuration of Cisco Small Business IP phones SPA 300 7.5.5 and SPA 500 7.5.5 does not properly support authentication, which allows remote attackers to read audio-stream data or originate telephone calls via a crafted XML request, aka Bug ID CSCuo52482.