Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2025-20351

🗓️ 15 Oct 2025 16:15:18Reported by ciscoType 
cve
 cve🔗 web.nvd.nist.gov👁 8 Views

Unauthenticated remote cross-site scripting in Cisco desk and IP phone web UI via crafted link; requires Web Access enabled and device registration to Cisco Unified Communications Manager.

Related
Detection
Affected
Refs
ReporterTitlePublishedViews
Family
Circl		CVE-2025-20351
15 Oct 202516:38
circl
Cisco		Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 with SIP Software Vulnerabilities
15 Oct 202516:00
cisco
Tenable Nessus		Cisco Desk/IP/Video Phone Cross Site Scripting (cisco-sa-phone-dos-FPyjLV7A) (CVE-2025-20351)
24 Oct 202500:00
nessus
Tenable Nessus		Cisco IP Phones Improper Neutralization of Input During Web Page Generation (CVE-2025-20351)
19 Jan 202600:00
nessus
CNNVD		Cisco SIP Software 跨站脚本漏洞
15 Oct 202500:00
cnnvd
Cvelist		CVE-2025-20351 Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 with SIP Firmware Cross-Site Scripting Vulnerability
15 Oct 202516:15
cvelist
EUVD		EUVD-2025-34666
15 Oct 202518:31
euvd
NVD		CVE-2025-20351
15 Oct 202517:15
nvd
RedhatCVE		CVE-2025-20351
16 Oct 202516:56
redhatcve
Vulnrichment		CVE-2025-20351 Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 with SIP Firmware Cross-Site Scripting Vulnerability
15 Oct 202516:15
vulnrichment
Rows per page
NVD
Node
ciscodesk_phone_9871_firmwareRange3.0(1)3.2(1)
AND
ciscodesk_phone_9871Match-
Node
ciscodesk_phone_9841_firmwareRange3.0(1)3.2(1)
AND
ciscodesk_phone_9841Match-
Node
ciscodesk_phone_9851_firmwareRange3.0(1)3.2(1)
AND
ciscodesk_phone_9851Match-
Node
ciscodesk_phone_9861_firmwareRange3.0(1)3.2(1)
AND
ciscodesk_phone_9861Match-
Node
ciscoip_phone_8865_firmwareRange<14.3(1)
OR
ciscoip_phone_8865_firmwareMatch14.3(1)
OR
ciscoip_phone_8865_firmwareMatch14.3(1)sr1
AND
ciscoip_phone_8865Match-
Node
ciscoip_phone_7811_firmwareRange<14.3(1)
OR
ciscoip_phone_7811_firmwareMatch14.3(1)
OR
ciscoip_phone_7811_firmwareMatch14.3(1)sr1
AND
ciscoip_phone_7811Match-
Node
ciscoip_phone_7821_firmwareRange<14.3(1)
OR
ciscoip_phone_7821_firmwareMatch14.3(1)
OR
ciscoip_phone_7821_firmwareMatch14.3(1)sr1
AND
ciscoip_phone_7821Match-
Node
ciscoip_phone_7841_firmwareRange<14.3(1)
OR
ciscoip_phone_7841_firmwareMatch14.3(1)
OR
ciscoip_phone_7841_firmwareMatch14.3(1)sr1
AND
ciscoip_phone_7841Match-
Node
ciscoip_phone_7861_firmwareRange<14.3(1)
OR
ciscoip_phone_7861_firmwareMatch14.3(1)
OR
ciscoip_phone_7861_firmwareMatch14.3(1)sr1
AND
ciscoip_phone_7861Match-
Node
ciscoip_phone_8811_firmwareRange<14.3(1)
OR
ciscoip_phone_8811_firmwareMatch14.3(1)
OR
ciscoip_phone_8811_firmwareMatch14.3(1)sr1
AND
ciscoip_phone_8811Match-
Node
ciscoip_phone_8832_firmwareRange<14.3(1)
OR
ciscoip_phone_8832_firmwareMatch14.3(1)
OR
ciscoip_phone_8832_firmwareMatch14.3(1)sr1
AND
ciscoip_phone_8832Match-
Node
ciscoip_phone_8841_firmwareRange<14.3(1)
OR
ciscoip_phone_8841_firmwareMatch14.3(1)
OR
ciscoip_phone_8841_firmwareMatch14.3(1)sr1
AND
ciscoip_phone_8841Match-
Node
ciscoip_phone_8845_firmwareRange<14.3(1)
OR
ciscoip_phone_8845_firmwareMatch14.3(1)
OR
ciscoip_phone_8845_firmwareMatch14.3(1)sr1
AND
ciscoip_phone_8845Match-
Node
ciscoip_phone_8851_firmwareRange<14.3(1)
OR
ciscoip_phone_8851_firmwareMatch14.3(1)
OR
ciscoip_phone_8851_firmwareMatch14.3(1)sr1
AND
ciscoip_phone_8851Match-
Node
ciscoip_phone_8861_firmwareRange<14.3(1)
OR
ciscoip_phone_8861_firmwareMatch14.3(1)
OR
ciscoip_phone_8861_firmwareMatch14.3(1)sr1
AND
ciscoip_phone_8861Match-
Node
ciscoip_phone_8821_firmwareRange<11.0(1)
OR
ciscoip_phone_8821_firmwareMatch11.0(0.7)mpp
OR
ciscoip_phone_8821_firmwareMatch11.0(1)
OR
ciscoip_phone_8821_firmwareMatch11.0(2)
OR
ciscoip_phone_8821_firmwareMatch11.0(2)sr1
OR
ciscoip_phone_8821_firmwareMatch11.0(2)sr2
OR
ciscoip_phone_8821_firmwareMatch11.0(3)
OR
ciscoip_phone_8821_firmwareMatch11.0(3)sr1
OR
ciscoip_phone_8821_firmwareMatch11.0(3)sr2
OR
ciscoip_phone_8821_firmwareMatch11.0(3)sr3
OR
ciscoip_phone_8821_firmwareMatch11.0(3)sr4
OR
ciscoip_phone_8821_firmwareMatch11.0(3)sr5
OR
ciscoip_phone_8821_firmwareMatch11.0(3)sr6
OR
ciscoip_phone_8821_firmwareMatch11.0(4)
OR
ciscoip_phone_8821_firmwareMatch11.0(4)sr1
OR
ciscoip_phone_8821_firmwareMatch11.0(4)sr2
OR
ciscoip_phone_8821_firmwareMatch11.0(4)sr3
OR
ciscoip_phone_8821_firmwareMatch11.0(5)
OR
ciscoip_phone_8821_firmwareMatch11.0(5)sr1
OR
ciscoip_phone_8821_firmwareMatch11.0(5)sr2
OR
ciscoip_phone_8821_firmwareMatch11.0(5)sr3
OR
ciscoip_phone_8821_firmwareMatch11.0(6)
OR
ciscoip_phone_8821_firmwareMatch11.0(6)sr1
OR
ciscoip_phone_8821_firmwareMatch11.0(6)sr2
OR
ciscoip_phone_8821_firmwareMatch11.0(6)sr4
OR
ciscoip_phone_8821_firmwareMatch11.0(6)sr5
OR
ciscoip_phone_8821_firmwareMatch11.0(6)sr6
AND
ciscoip_phone_8821Match-
Node
ciscovideo_phone_8875_firmwareRange<2.3(1)
OR
ciscovideo_phone_8875_firmwareRange3.0(1)3.2(1)
OR
ciscovideo_phone_8875_firmwareMatch2.3(1)
OR
ciscovideo_phone_8875_firmwareMatch2.3(1)sr1
AND
ciscovideo_phone_8875Match-
[
  {
    "vendor": "Cisco",
    "product": "Cisco Session Initiation Protocol (SIP) Software",
    "versions": [
      {
        "version": "12.1(1)SR1",
        "status": "affected"
      },
      {
        "version": "11.5(1)",
        "status": "affected"
      },
      {
        "version": "10.3(2)",
        "status": "affected"
      },
      {
        "version": "10.2(2)",
        "status": "affected"
      },
      {
        "version": "10.3(1)",
        "status": "affected"
      },
      {
        "version": "10.3(1)SR4",
        "status": "affected"
      },
      {
        "version": "11.0(1)",
        "status": "affected"
      },
      {
        "version": "10.4(1)SR2 3rd Party",
        "status": "affected"
      },
      {
        "version": "11.7(1)",
        "status": "affected"
      },
      {
        "version": "12.1(1)",
        "status": "affected"
      },
      {
        "version": "11.0(0.7) MPP",
        "status": "affected"
      },
      {
        "version": "9.3(4) 3rd Party",
        "status": "affected"
      },
      {
        "version": "12.5(1)SR2",
        "status": "affected"
      },
      {
        "version": "10.2(1)SR1",
        "status": "affected"
      },
      {
        "version": "9.3(4)SR3 3rd Party",
        "status": "affected"
      },
      {
        "version": "10.2(1)",
        "status": "affected"
      },
      {
        "version": "12.5(1)",
        "status": "affected"
      },
      {
        "version": "10.3(1)SR2",
        "status": "affected"
      },
      {
        "version": "11-0-1MSR1-1",
        "status": "affected"
      },
      {
        "version": "10.4(1) 3rd Party",
        "status": "affected"
      },
      {
        "version": "12.5(1)SR1",
        "status": "affected"
      },
      {
        "version": "11.5(1)SR1",
        "status": "affected"
      },
      {
        "version": "10.1(1)SR2",
        "status": "affected"
      },
      {
        "version": "12.0(1)SR2",
        "status": "affected"
      },
      {
        "version": "12.6(1)",
        "status": "affected"
      },
      {
        "version": "10.3(1.11) 3rd Party",
        "status": "affected"
      },
      {
        "version": "12.0(1)",
        "status": "affected"
      },
      {
        "version": "12.0(1)SR1",
        "status": "affected"
      },
      {
        "version": "9.3(3)",
        "status": "affected"
      },
      {
        "version": "12.5(1)SR3",
        "status": "affected"
      },
      {
        "version": "10.3(1)SR4b",
        "status": "affected"
      },
      {
        "version": "9.3(4)SR1 3rd Party",
        "status": "affected"
      },
      {
        "version": "10.3(1)SR5",
        "status": "affected"
      },
      {
        "version": "10.1(1.9)",
        "status": "affected"
      },
      {
        "version": "10.3(1.9) 3rd Party",
        "status": "affected"
      },
      {
        "version": "9.3(4)SR2 3rd Party",
        "status": "affected"
      },
      {
        "version": "10.3(1)SR1",
        "status": "affected"
      },
      {
        "version": "10.3(1)SR3",
        "status": "affected"
      },
      {
        "version": "10.1(1)SR1",
        "status": "affected"
      },
      {
        "version": "12.0(1)SR3",
        "status": "affected"
      },
      {
        "version": "12.6(1)SR1",
        "status": "affected"
      },
      {
        "version": "12.7(1)",
        "status": "affected"
      },
      {
        "version": "10.3(1)SR6",
        "status": "affected"
      },
      {
        "version": "12.8(1)",
        "status": "affected"
      },
      {
        "version": "12.7(1)SR1",
        "status": "affected"
      },
      {
        "version": "11.0(2)SR1",
        "status": "affected"
      },
      {
        "version": "11.0(4)",
        "status": "affected"
      },
      {
        "version": "11.0(2)",
        "status": "affected"
      },
      {
        "version": "11.0(4)SR3",
        "status": "affected"
      },
      {
        "version": "11.0(5)",
        "status": "affected"
      },
      {
        "version": "11.0(3)SR2",
        "status": "affected"
      },
      {
        "version": "11.0(3)SR4",
        "status": "affected"
      },
      {
        "version": "11.0(3)SR3",
        "status": "affected"
      },
      {
        "version": "11.0(2)SR2",
        "status": "affected"
      },
      {
        "version": "11.0(4)SR1",
        "status": "affected"
      },
      {
        "version": "11.0(5)SR3",
        "status": "affected"
      },
      {
        "version": "11.0(3)",
        "status": "affected"
      },
      {
        "version": "11.0(5)SR2",
        "status": "affected"
      },
      {
        "version": "11.0(3)SR6",
        "status": "affected"
      },
      {
        "version": "11.0(5)SR1",
        "status": "affected"
      },
      {
        "version": "11.0(4)SR2",
        "status": "affected"
      },
      {
        "version": "11.0(3)SR1",
        "status": "affected"
      },
      {
        "version": "11.0(3)SR5",
        "status": "affected"
      },
      {
        "version": "11.0(6)",
        "status": "affected"
      },
      {
        "version": "12.8(1)SR1",
        "status": "affected"
      },
      {
        "version": "12.8(1)SR2",
        "status": "affected"
      },
      {
        "version": "14.0(1)",
        "status": "affected"
      },
      {
        "version": "14.0(1)SR1",
        "status": "affected"
      },
      {
        "version": "11.0(6)SR1",
        "status": "affected"
      },
      {
        "version": "10.3(1)SR7",
        "status": "affected"
      },
      {
        "version": "14.0(1)SR2",
        "status": "affected"
      },
      {
        "version": "14.1(1)",
        "status": "affected"
      },
      {
        "version": "14.0(1)SR3",
        "status": "affected"
      },
      {
        "version": "11.0(6)SR2",
        "status": "affected"
      },
      {
        "version": "14.1(1)SR1",
        "status": "affected"
      },
      {
        "version": "14.1(1)SR2",
        "status": "affected"
      },
      {
        "version": "11.0(6)SR4",
        "status": "affected"
      },
      {
        "version": "14.2(1)",
        "status": "affected"
      },
      {
        "version": "14.2(1)SR1",
        "status": "affected"
      },
      {
        "version": "11.0(6)SR5",
        "status": "affected"
      },
      {
        "version": "14.1(1)SR3",
        "status": "affected"
      },
      {
        "version": "14.2(1)SR2",
        "status": "affected"
      },
      {
        "version": "3.1(1)",
        "status": "affected"
      },
      {
        "version": "3.0(1)",
        "status": "affected"
      },
      {
        "version": "2.3(1)",
        "status": "affected"
      },
      {
        "version": "2.3(1)SR1",
        "status": "affected"
      },
      {
        "version": "2.2(1)",
        "status": "affected"
      },
      {
        "version": "2.1(1)",
        "status": "affected"
      },
      {
        "version": "2.0(1)",
        "status": "affected"
      },
      {
        "version": "14.2(1)SR3",
        "status": "affected"
      },
      {
        "version": "3.1(1)SR1",
        "status": "affected"
      },
      {
        "version": "14.3(1)",
        "status": "affected"
      },
      {
        "version": "3.2(1)",
        "status": "affected"
      },
      {
        "version": "14.3(1)SR1",
        "status": "affected"
      },
      {
        "version": "14.2(1)SR4",
        "status": "affected"
      },
      {
        "version": "11.0(6)SR6",
        "status": "affected"
      },
      {
        "version": "14.3(1)SR2",
        "status": "affected"
      },
      {
        "version": "14.3(1)SR3",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
04 Dec 2025 21:26Current
6.4Medium risk
Vulners AI Score6.4
CVSS 3.16.1
EPSS0.00033
SSVC
CWE-79
cross site scriptingweb user interfaceCisco desk phoneCisco IP Phoneweb accessdevice registrationunified communications manager
8