11 matches found
EUVD-2016-2568
Malware in sbrugna...
EUVD-2019-6856
Malware in sbrugna...
EUVD-2023-24397
Malicious code in bioql PyPI...
CVE-2023-20181
A vulnerability in the web-based management interface of Cisco Small Business SPA500 Series IP Phones could allow an unauthenticated, remote attacker to conduct XSS attacks. This vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of the...
CVE-2023-20218
A vulnerability in web-based management interface of Cisco SPA500 Series Analog Telephone Adapters ATAs could allow an authenticated, remote attacker to to modify a web page in the context of a user's browser. This vulnerability is due to insufficient validation of user-supplied input by the...
CISCO-SA-20190717-SPA500
creationtimestamp| type| source ---|---|--- 2024-12-17 06:41:45+00:00| seen| https://social.circl.lu/users/vulnerabilitylookup/statuses/113666793582617916...
CVE-2023-20218
A vulnerability in web-based management interface of Cisco SPA500 Series Analog Telephone Adapters ATAs could allow an authenticated, remote attacker to to modify a web page in the context of a user's browser. This vulnerability is due to insufficient validation of user-supplied input by the...
Cisco Small Business SPA500 Series IP Phones Input Validation Error Vulnerability
Cisco Small Business SPA500 Series IP Phones is an SPA500 series IP phone from Cisco USA. An input validation error vulnerability exists in Cisco Small Business SPA500 Series IP Phones using firmware version 7.6.2SR5 and earlier. The vulnerability stems from the fact that the device comes with...
CVE-2019-1683
A vulnerability in the certificate handling component of the Cisco SPA112, SPA525, and SPA5X5 Series IP Phones could allow an unauthenticated, remote attacker to listen to or control some aspects of a Transport Level Security TLS-encrypted Session Initiation Protocol SIP conversation. The...
Cross site request forgery (csrf)
A vulnerability in Cisco SPA300 and SPA500 Series IP Phones could allow an unauthenticated, remote attacker to execute unwanted actions on an affected device. The vulnerability is due to a lack of cross-site request forgery CSRF protection. An attacker could exploit this vulnerability by tricking...
PT-2017-12446 · Cisco · Cisco Spa500 Series Ip Phones +1
Name of the Vulnerable Software and Affected Versions: Cisco SPA300 and SPA500 Series IP Phones affected versions not specified Description: A lack of cross-site request forgery CSRF protection in the Cisco SPA300 and SPA500 Series IP Phones could allow an unauthenticated, remote attacker to...