Lucene search
+L

155 matches found

CISA
CISA
added 2019/10/17 12:0 a.m.11 views

Cisco Releases Security Updates

Cisco has released security updates to address vulnerabilities in Cisco products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities see the Cisco Security Advisories page. The Cybersecurity an...

7.7AI score
Exploits0References7
CNVD
CNVD
added 2019/10/17 12:0 a.m.3 views

Cisco SPA100 Remote Code Execution Vulnerability (CNVD-2019-36891)

The Cisco SPA100 Series is an analog phone adapter from Cisco that allows your standard analog phone to access Internet telephony services through an RJ-11 phone port. A remote code execution vulnerability exists in the Cisco SPA100 Series with firmware 1.4.1 SR4 and earlier. The vulnerability...

8CVSS8.5AI score0.00578EPSS
Exploits0References1
CNVD
CNVD
added 2019/10/17 12:0 a.m.5 views

Cisco SPA100 Denial of Service Vulnerability

The Cisco SPA100 Series is an analog phone adapter from Cisco that allows your standard analog phone to access Internet telephony services through an RJ-11 phone port. A denial of service vulnerability exists in the web-based management interface of Cisco SPA100 Series 1.4.1 SR3 and earlier. The...

6.8CVSS6.9AI score0.01399EPSS
Exploits1References1
CNVD
CNVD
added 2019/10/17 12:0 a.m.5 views

Cisco SPA100 Information Disclosure Vulnerability (CNVD-2019-36890)

The Cisco SPA100 Series is an analog phone adapter from Cisco that allows your standard analog phone to access Internet telephony services through an RJ-11 phone port. An information disclosure vulnerability exists in the Web-based management interface of the Cisco SPA100 Series 1.4.1 SR3 and...

6.5CVSS6.4AI score0.01565EPSS
Exploits0References1
CNVD
CNVD
added 2019/10/17 12:0 a.m.6 views

Cisco SPA100 Remote Code Execution Vulnerability (CNVD-2019-36886)

The Cisco SPA100 Series is an analog phone adapter from Cisco that allows your standard analog phone to access Internet telephony services through an RJ-11 phone port. A remote code execution vulnerability exists in the Cisco SPA100 Series with firmware 1.4.1 SR4 and earlier. The vulnerability...

8CVSS8.5AI score0.00578EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/10/17 12:0 a.m.111 views

Cisco SPA100 Series Multiple Vulnerabilities

The remote Cisco SPA100 Series device is affected by multiple vulnerabilities: - Multiple remote code execution vulnerabilities. An authenticated attacker can cause a stack overflow leading to control flow change in the Cisco SPA 112/122 device. CVE-2019-15240, CVE-2019-15241, CVE-2019-15242,...

8CVSS7.8AI score0.23354EPSS
Exploits3References25
NVD
NVD
added 2019/10/16 7:15 p.m.19 views

CVE-2019-15251

Multiple vulnerabilities in Cisco SPA100 Series Analog Telephone Adapters ATAs could allow an authenticated, adjacent attacker to execute arbitrary code with elevated privileges. The vulnerabilities are due to improper validation of user-supplied input to the web-based management interface. An...

8CVSS8.1AI score0.00578EPSS
Exploits0References1
NVD
NVD
added 2019/10/16 7:15 p.m.24 views

CVE-2019-15252

Multiple vulnerabilities in Cisco SPA100 Series Analog Telephone Adapters ATAs could allow an authenticated, adjacent attacker to execute arbitrary code with elevated privileges. The vulnerabilities are due to improper validation of user-supplied input to the web-based management interface. An...

8CVSS8.1AI score0.00578EPSS
Exploits0References1
OSV
OSV
added 2019/10/16 7:15 p.m.5 views

CVE-2019-15258

A vulnerability in the web-based management interface of Cisco SPA100 Series Analog Telephone Adapters ATAs could allow an authenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper validation of user-supplied requests to the...

6.5CVSS6.8AI score0.01399EPSS
Exploits1References2
OSV
OSV
added 2019/10/16 7:15 p.m.4 views

CVE-2019-15257

A vulnerability in the web-based management interface of Cisco SPA100 Series Analog Telephone Adapters ATAs could allow an authenticated, remote attacker to access sensitive information on an affected device. The vulnerability is due to improper restrictions on configuration information. An...

6.5CVSS5.8AI score0.01088EPSS
Exploits0References2
NVD
NVD
added 2019/10/16 7:15 p.m.19 views

CVE-2019-15250

Multiple vulnerabilities in Cisco SPA100 Series Analog Telephone Adapters ATAs could allow an authenticated, adjacent attacker to execute arbitrary code with elevated privileges. The vulnerabilities are due to improper validation of user-supplied input to the web-based management interface. An...

8CVSS8.1AI score0.00578EPSS
Exploits0References1
OSV
OSV
added 2019/10/16 7:15 p.m.5 views

CVE-2019-15251

Multiple vulnerabilities in Cisco SPA100 Series Analog Telephone Adapters ATAs could allow an authenticated, adjacent attacker to execute arbitrary code with elevated privileges. The vulnerabilities are due to improper validation of user-supplied input to the web-based management interface. An...

8CVSS7.5AI score0.00578EPSS
Exploits0References1
OSV
OSV
added 2019/10/16 7:15 p.m.8 views

CVE-2019-15249

Multiple vulnerabilities in Cisco SPA100 Series Analog Telephone Adapters ATAs could allow an authenticated, adjacent attacker to execute arbitrary code with elevated privileges. The vulnerabilities are due to improper validation of user-supplied input to the web-based management interface. An...

8CVSS7.5AI score0.00578EPSS
Exploits0References1
NVD
NVD
added 2019/10/16 7:15 p.m.20 views

CVE-2019-15258

A vulnerability in the web-based management interface of Cisco SPA100 Series Analog Telephone Adapters ATAs could allow an authenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper validation of user-supplied requests to the...

6.8CVSS6.4AI score0.01399EPSS
Exploits1References2
NVD
NVD
added 2019/10/16 7:15 p.m.32 views

CVE-2019-15257

A vulnerability in the web-based management interface of Cisco SPA100 Series Analog Telephone Adapters ATAs could allow an authenticated, remote attacker to access sensitive information on an affected device. The vulnerability is due to improper restrictions on configuration information. An...

6.5CVSS6.3AI score0.01088EPSS
Exploits0References2
NVD
NVD
added 2019/10/16 7:15 p.m.21 views

CVE-2019-15249

Multiple vulnerabilities in Cisco SPA100 Series Analog Telephone Adapters ATAs could allow an authenticated, adjacent attacker to execute arbitrary code with elevated privileges. The vulnerabilities are due to improper validation of user-supplied input to the web-based management interface. An...

8CVSS8.1AI score0.00578EPSS
Exploits0References1
NVD
NVD
added 2019/10/16 7:15 p.m.21 views

CVE-2019-15241

Multiple vulnerabilities in Cisco SPA100 Series Analog Telephone Adapters ATAs could allow an authenticated, adjacent attacker to execute arbitrary code with elevated privileges. The vulnerabilities are due to improper validation of user-supplied input to the web-based management interface. An...

8CVSS8.1AI score0.00578EPSS
Exploits0References1
OSV
OSV
added 2019/10/16 7:15 p.m.6 views

CVE-2019-15244

Multiple vulnerabilities in Cisco SPA100 Series Analog Telephone Adapters ATAs could allow an authenticated, adjacent attacker to execute arbitrary code with elevated privileges. The vulnerabilities are due to improper validation of user-supplied input to the web-based management interface. An...

8CVSS7.5AI score0.00578EPSS
Exploits0References1
NVD
NVD
added 2019/10/16 7:15 p.m.23 views

CVE-2019-15243

Multiple vulnerabilities in Cisco SPA100 Series Analog Telephone Adapters ATAs could allow an authenticated, adjacent attacker to execute arbitrary code with elevated privileges. The vulnerabilities are due to improper validation of user-supplied input to the web-based management interface. An...

8CVSS8.1AI score0.00578EPSS
Exploits0References1
NVD
NVD
added 2019/10/16 7:15 p.m.26 views

CVE-2019-15245

Multiple vulnerabilities in Cisco SPA100 Series Analog Telephone Adapters ATAs could allow an authenticated, adjacent attacker to execute arbitrary code with elevated privileges. The vulnerabilities are due to improper validation of user-supplied input to the web-based management interface. An...

8CVSS8.1AI score0.00578EPSS
Exploits0References1
Rows per page
Query Builder