Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2011-1637
HistoryJun 02, 2011 - 8:55 p.m.

CVE-2011-1637

2011-06-0220:55:03
CWE-264
[email protected]
web.nvd.nist.gov
6

CVSS2

1.5

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:S/C:P/I:N/A:N

AI Score

6.5

Confidence

Low

EPSS

0

Percentile

5.1%

JSON

Cisco Unified IP Phones 7900 devices (aka TNP phones) with software before 9.2.1 do not properly verify signatures for software images, which allows local users to gain privileges via a crafted image, aka Bug ID CSCtn65962.

Affected configurations

Nvd
Node
ciscounified_ip_phone_7906
OR
ciscounified_ip_phone_7911g
OR
ciscounified_ip_phone_7931g
OR
ciscounified_ip_phone_7941g
OR
ciscounified_ip_phone_7941g-ge
OR
ciscounified_ip_phone_7942g
OR
ciscounified_ip_phone_7945g
OR
ciscounified_ip_phone_7961g
OR
ciscounified_ip_phone_7961g-ge
OR
ciscounified_ip_phone_7962g
OR
ciscounified_ip_phone_7965g
OR
ciscounified_ip_phone_7970g
OR
ciscounified_ip_phone_7971g-ge
OR
ciscounified_ip_phone_7975g
AND
ciscoskinny_client_control_protocol_softwareRange9.1\(1\)sr1
OR
ciscoskinny_client_control_protocol_softwareMatch1.0\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch1.0\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch1.0\(2\)sr1
OR
ciscoskinny_client_control_protocol_softwareMatch1.0\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch1.0\(4\)
OR
ciscoskinny_client_control_protocol_softwareMatch1.0\(5\)
OR
ciscoskinny_client_control_protocol_softwareMatch1.0\(9\)
OR
ciscoskinny_client_control_protocol_softwareMatch1.1\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch1.2\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch1.3\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch1.3\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch1.3\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch1.3\(4\)
OR
ciscoskinny_client_control_protocol_softwareMatch1.3\(4\)sr1
OR
ciscoskinny_client_control_protocol_softwareMatch1.4\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch1.4\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch2.0\(0\)
OR
ciscoskinny_client_control_protocol_softwareMatch2.0\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.0
OR
ciscoskinny_client_control_protocol_softwareMatch3.0\(0\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.0\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.0\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.1
OR
ciscoskinny_client_control_protocol_softwareMatch3.1\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.1\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.1\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.1\(4\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.1\(6\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.1\(10\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.1\(11\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(4\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(5\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(6\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(6a\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(7\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(8\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(9\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(10\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(11\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(12\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(13\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(14\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.2\(15\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(4\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(5\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(6\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(7\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(8\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(9\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(10\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(11\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(12\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(13\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(14\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(15\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(16\)
OR
ciscoskinny_client_control_protocol_softwareMatch3.3\(20\)
OR
ciscoskinny_client_control_protocol_softwareMatch4.0\(0\)
OR
ciscoskinny_client_control_protocol_softwareMatch4.1\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch4.1\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch4.1\(4\)
OR
ciscoskinny_client_control_protocol_softwareMatch4.1\(5\)
OR
ciscoskinny_client_control_protocol_softwareMatch4.1\(6\)
OR
ciscoskinny_client_control_protocol_softwareMatch4.1\(7\)
OR
ciscoskinny_client_control_protocol_softwareMatch5.0\(0\)
OR
ciscoskinny_client_control_protocol_softwareMatch5.0\(1a\)
OR
ciscoskinny_client_control_protocol_softwareMatch5.0\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch5.0\(5\)
OR
ciscoskinny_client_control_protocol_softwareMatch5.0\(6\)
OR
ciscoskinny_client_control_protocol_softwareMatch5.0\(7\)
OR
ciscoskinny_client_control_protocol_softwareMatch6.0\(0\)
OR
ciscoskinny_client_control_protocol_softwareMatch6.0\(2\)sr2
OR
ciscoskinny_client_control_protocol_softwareMatch6.0\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch6.0\(3\)sr1
OR
ciscoskinny_client_control_protocol_softwareMatch6.0\(4\)
OR
ciscoskinny_client_control_protocol_softwareMatch6.0\(5\)
OR
ciscoskinny_client_control_protocol_softwareMatch6.1\(0\)
OR
ciscoskinny_client_control_protocol_softwareMatch6.1\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch7.0\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch7.0\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch7.0\(2\)sr1
OR
ciscoskinny_client_control_protocol_softwareMatch7.0\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch7.1\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch7.2\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch7.2\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch7.2\(4\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.0\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.0\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.0\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.0\(4\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.0\(4\)sr1
OR
ciscoskinny_client_control_protocol_softwareMatch8.0\(4\)sr3a
OR
ciscoskinny_client_control_protocol_softwareMatch8.0\(5\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.0\(6\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.0\(7\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.0\(8\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.0\(9\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.0\(10\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.1\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.1\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.2\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.2\(2\)sr1
OR
ciscoskinny_client_control_protocol_softwareMatch8.2\(2\)sr2
OR
ciscoskinny_client_control_protocol_softwareMatch8.2\(2\)sr3
OR
ciscoskinny_client_control_protocol_softwareMatch8.2\(2\)sr4
OR
ciscoskinny_client_control_protocol_softwareMatch8.3\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.3\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.3\(2\)sr1
OR
ciscoskinny_client_control_protocol_softwareMatch8.3\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.3\(3\)sr1
OR
ciscoskinny_client_control_protocol_softwareMatch8.3\(3\)sr2
OR
ciscoskinny_client_control_protocol_softwareMatch8.3\(5\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.4\(1\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.4\(1\)sr2
OR
ciscoskinny_client_control_protocol_softwareMatch8.4\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.4\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.4\(4\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.5\(2\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.5\(2\)sr1
OR
ciscoskinny_client_control_protocol_softwareMatch8.5\(3\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.5\(3\)sr1
OR
ciscoskinny_client_control_protocol_softwareMatch8.5\(4\)
OR
ciscoskinny_client_control_protocol_softwareMatch8.70
OR
ciscoskinny_client_control_protocol_softwareMatch9.0\(2\)sr1
OR
ciscoskinny_client_control_protocol_softwareMatch9.0\(2\)sr2
OR
ciscoskinny_client_control_protocol_softwareMatch9.0\(3\)
VendorProductVersionCPE
ciscounified_ip_phone_7906*cpe:2.3:h:cisco:unified_ip_phone_7906:*:*:*:*:*:*:*:*
ciscounified_ip_phone_7911g*cpe:2.3:h:cisco:unified_ip_phone_7911g:*:*:*:*:*:*:*:*
ciscounified_ip_phone_7931g*cpe:2.3:h:cisco:unified_ip_phone_7931g:*:*:*:*:*:*:*:*
ciscounified_ip_phone_7941g*cpe:2.3:h:cisco:unified_ip_phone_7941g:*:*:*:*:*:*:*:*
ciscounified_ip_phone_7941g-ge*cpe:2.3:h:cisco:unified_ip_phone_7941g-ge:*:*:*:*:*:*:*:*
ciscounified_ip_phone_7942g*cpe:2.3:h:cisco:unified_ip_phone_7942g:*:*:*:*:*:*:*:*
ciscounified_ip_phone_7945g*cpe:2.3:h:cisco:unified_ip_phone_7945g:*:*:*:*:*:*:*:*
ciscounified_ip_phone_7961g*cpe:2.3:h:cisco:unified_ip_phone_7961g:*:*:*:*:*:*:*:*
ciscounified_ip_phone_7961g-ge*cpe:2.3:h:cisco:unified_ip_phone_7961g-ge:*:*:*:*:*:*:*:*
ciscounified_ip_phone_7962g*cpe:2.3:h:cisco:unified_ip_phone_7962g:*:*:*:*:*:*:*:*
Rows per page:
1-10 of 1471

Related

cvelist 1
prion 1
cisco 1
cve 1
nessus 2
securityvulns 2
cvelist
cvelist
CVE-2011-1637
2011-06-02 20:00:00
prion
prion
Code injection
2011-06-02 20:55:00
cisco
cisco
Cisco Unified IP Phones 7900 Series Unsigned Code Installation Vulnerability
2011-06-01 15:32:48
cve
cve
CVE-2011-1637
2011-06-02 20:55:03
nessus
nessus
Cisco Unified IP Phones 7900 Series Unsigned Code Installation (CVE-2011-1637)
2024-03-18 00:00:00
Cisco Unified IP Phones Multiple Vulnerabilities (cisco-sa-20110601-phone)
2013-09-24 00:00:00
securityvulns
securityvulns
Cisco Unified IP Phones 7900 series security vulnerabilites
2011-06-02 00:00:00
Cisco Security Advisory: Multiple Vulnerabilities in Cisco Unified IP Phones 7900 Series
2011-06-02 00:00:00

CVSS2

1.5

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:S/C:P/I:N/A:N

AI Score

6.5

Confidence

Low

EPSS

0

Percentile

5.1%

JSON
Related for NVD:CVE-2011-1637
cvelist1prion1cisco1cve1nessus2securityvulns2