Lucene search
K

20 matches found

Vulnrichment
Vulnrichment
added 2025/10/15 4:15 p.m.4 views

CVE-2025-20351 Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 with SIP Firmware Cross-Site Scripting Vulnerability

A vulnerability in the web UI of Cisco Desk Phone 9800 Series, Cisco IP Phone 7800 and 8800 Series, and Cisco Video Phone 8875 running Cisco SIP Software could allow an unauthenticated, remote attacker to conduct XSS attacks against a user of the web UI. This vulnerability exists because the web ...

6.1CVSS6.4AI score0.00262EPSS
Exploits0References1
Cisco
Cisco
added 2025/10/15 4:0 p.m.13 views

Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 with SIP Software Vulnerabilities

Multiple vulnerabilities in Cisco Desk Phone 9800 Series, Cisco IP Phone 7800 and 8800 Series, and Cisco Video Phone 8875 running Cisco Session Initiation Protocol SIP Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition or conduct a cross-site...

7.5CVSS6.3AI score0.00446EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/15 12:0 a.m.9 views

PT-2025-42379

Name of the Vulnerable Software and Affected Versions Cisco Desk Phone 9800 Series Cisco IP Phone 7800 Series Cisco IP Phone 8800 Series Cisco Video Phone 8875 Description A flaw exists in the web UI of the listed Cisco phone series running Cisco SIP Software that could allow a remote,...

7.8CVSS7.1AI score0.00446EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-10321

Malware in sbrugna...

8.8CVSS8.4AI score0.00698EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/09/05 6:18 p.m.21 views

CVE-2025-20336

A vulnerability in the directory permissions of Cisco Desk Phone 9800 Series, Cisco IP Phone 7800 and 8800 Series, and Cisco Video Phone 8875 could allow an unauthenticated, remote attacker to access sensitive information on an affected device. This vulnerability exists because the product expose...

5.3CVSS6.5AI score0.00349EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/09/03 12:0 a.m.4 views

Cisco多款产品 访问控制错误漏洞

Cisco IP Phone 8800 Series and so on are products of Cisco USA.Cisco IP Phone 8800 Series is an 8800 series IP phone.Cisco IP Phone 7800 Series is a 7800 series IP phone.Cisco Desk Phone The 9800 Series is a series of IP phones. An Access Control Error vulnerability exists in various Cisco...

5.3CVSS6.7AI score0.00332EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/09/03 12:0 a.m.5 views

PT-2025-35813

Name of the Vulnerable Software and Affected Versions Cisco Desk Phone 9800 Series Cisco IP Phone 7800 and 8800 Series Cisco Video Phone 8875 Description A vulnerability exists in the directory permissions of the affected devices, potentially allowing an unauthenticated, remote attacker to write...

5.3CVSS6.8AI score0.00332EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/05/01 12:0 a.m.5 views

PT-2024-3514

Name of the Vulnerable Software and Affected Versions Cisco IP Phone 6800 versions affected versions not specified Cisco IP Phone 7800 versions affected versions not specified Cisco IP Phone 8800 versions affected versions not specified Cisco Video Phone 8875 versions affected versions not...

7.8CVSS6.7AI score0.00803EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2023/03/01 12:0 a.m.4 views

PT-2023-1613 · Cisco · Cisco Ip Phone 8800 +2

Name of the Vulnerable Software and Affected Versions: Cisco IP Phone 6800 versions affected versions not specified Cisco IP Phone 7800 versions affected versions not specified Cisco IP Phone 8800 versions affected versions not specified Description: The issue is related to the web-based manageme...

9.8CVSS7.9AI score0.10314EPSS
Exploits0References7
CVE
CVE
added 2022/04/06 6:12 p.m.96 views

CVE-2022-20774

CVE-2022-20774 affects Cisco IP Phone 6800, 7800, and 8800 Series with Multiplatform Firmware. The issue is an insufficient CSRF protection in the web-based management interface, enabling an unauthenticated attacker to induce a logged-in user to perform actions via a crafted link. Successful expl...

8.1CVSS7.4AI score0.00383EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2019/03/22 8:29 p.m.19 views

CVE-2019-1764

A vulnerability in the web-based management interface of Session Initiation Protocol SIP Software for Cisco IP Phone 8800 Series could allow an unauthenticated, remote attacker to conduct a cross-site request forgery CSRF attack. The vulnerability is due to insufficient CSRF protections for the...

8.8CVSS8.5AI score0.00698EPSS
Exploits0References1
OSV
OSV
added 2019/03/22 8:29 p.m.3 views

CVE-2019-1764

A vulnerability in the web-based management interface of Session Initiation Protocol SIP Software for Cisco IP Phone 8800 Series could allow an unauthenticated, remote attacker to conduct a cross-site request forgery CSRF attack. The vulnerability is due to insufficient CSRF protections for the...

8.8CVSS7.4AI score0.00698EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2019/03/22 8:5 p.m.9 views

CVE-2019-1766 Cisco IP Phone 8800 Series File Upload Denial of Service Vulnerability

A vulnerability in the web-based management interface of Session Initiation Protocol SIP Software for Cisco IP Phone 8800 Series could allow an unauthenticated, remote attacker to cause high disk utilization, resulting in a denial of service DoS condition. The vulnerability exists because the...

7.5CVSS7AI score0.01527EPSS
Exploits0References1
NVD
NVD
added 2019/01/10 4:29 p.m.21 views

CVE-2018-0461

A vulnerability in the Cisco IP Phone 8800 Series Software could allow an unauthenticated, remote attacker to conduct an arbitrary script injection attack on an affected device. The vulnerability exists because the software running on an affected device insufficiently validates user-supplied data...

8.8CVSS8AI score0.01501EPSS
Exploits2References2
CNVD
CNVD
added 2018/07/12 12:0 a.m.2 views

Cisco IP Phone 6800, 7800, 8800 Series Command Injection Vulnerability

Cisco IP Phone 6800, 7800 and 8800 Series are different series of IP phone products from Cisco, USA.Multiplatform Firmware is a set of firewall software that runs on it to support multiple platforms. A command injection vulnerability exists in the Web-based UI of the Cisco IP Phone 6800, 7800, an...

9CVSS9AI score0.05872EPSS
Exploits0References1
OSV
OSV
added 2018/05/17 3:29 a.m.4 views

CVE-2018-0325

A vulnerability in the Session Initiation Protocol SIP call-handling functionality of Cisco IP Phone 7800 Series phones and Cisco IP Phone 8800 Series phones could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected phone. The vulnerability is due t...

7.5CVSS5.8AI score0.03381EPSS
Exploits0References3
OSV
OSV
added 2016/08/22 10:59 a.m.4 views

CVE-2016-1479

Cisco IP Phone 8800 devices with software 11.01 allow remote attackers to cause a denial of service memory corruption via a crafted HTTP request, aka Bug ID CSCuz03038...

7.5CVSS5.8AI score0.02997EPSS
Exploits0References3
Prion
Prion
added 2016/08/22 10:59 a.m.19 views

Cross site scripting

Cross-site scripting XSS vulnerability on Cisco IP Phone 8800 devices with software 11.0 allows remote authenticated users to inject arbitrary web script or HTML via crafted parameters, aka Bug ID CSCuz03024...

3.5CVSS5.8AI score0.00802EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2016/08/22 10:0 a.m.50 views

CVE-2016-1476

Cisco IP Phone 8800 Series (software 11.0) is affected by CVE-2016-1476: a cross-site scripting (XSS) vulnerability in the web interface due to insufficient sanitization of parameter values. It can be exploited by remote authenticated users to inject arbitrary script/HTML via crafted parameters. ...

5.4CVSS5.1AI score0.00802EPSS
Exploits0References3Affected Software1
OpenVAS
OpenVAS
added 2016/06/27 12:0 a.m.26 views

Cisco IP Phone 8800 Series Web Application Buffer Overflow Vulnerability (cisco-sa-20160609-ipp)

Cisco IP Phone 8800 Series are prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...

7.5CVSS7.6AI score0.04117EPSS
Exploits0References1
Rows per page
Query Builder