86 matches found
EUVD-2019-6263
Malware in sbrugna...
The vulnerability in the web interface for controlling microprogrammed software in Cisco SPA100 Series IP phones allows a perpetrator to access confidential information.
The vulnerability in the web interface for managing microprogrammed IP telephone devices of the Cisco SPA100 series is related to the insecure processing of user credentials. Exploiting this vulnerability could allow a malicious actor to gain access to confidential information...
The vulnerability of the network web interface for controlling microprogrammed software in Cisco SPA100 Series IP phones allows a perpetrator to gain unauthorized access to read data.
The vulnerability of the network web interface for controlling Microprogrammed Software-IP Telephones of the Cisco SPA100 Series is caused by errors in the validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to read data...
The vulnerability of the network web interface for controlling microprogrammed software in Cisco SPA100 Series IP phones allows a perpetrator to gain unauthorized access to read data.
The vulnerability of the network web interface for controlling Cisco SPA100 Series IP phones is related to the lack of protection for operational data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to read data...
The vulnerability in the web interface for managing microprogrammed software in Cisco SPA100 Series IP phones allows a perpetrator to cause a service failure.
The vulnerability of the web interface for managing Microprogramming-based IP phones from the Cisco SPA100 series is related to errors during the verification of user requests sent to the web management interface. Exploiting this vulnerability can allow a malicious actor to cause service failures...
Cisco SPA100 Series Analog Telephone Adapters Remote Code Execution Vulnerability (CNVD-2019-39613)
The Cisco SPA100 Series Analog Telephone Adapters ATAs are an SPA100 series analog telephone adapter. A remote code execution vulnerability exists in the Cisco SPA100 Series Analog Telephone Adapters that stems from not properly validating user input submitted to the web-based management interfac...
Cisco SPA100 Series Analog Telephone Adapters Remote Code Execution Vulnerability
The Cisco SPA100 Series Analog Telephone Adapters ATAs are an SPA100 series analog telephone adapter. A remote code execution vulnerability exists in the Cisco SPA100 Series Analog Telephone Adapters that stems from not properly validating user input submitted to the web-based management interfac...
The vulnerability in the web interface for managing microprogrammed software in Cisco SPA100 Series IP phones allows a perpetrator to execute arbitrary code with elevated privileges.
The vulnerability in the web interface for managing Microprogramming software in Cisco SPA100 Series IP phones is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code with elevated privileges using a...
The vulnerability in the web interface for managing microprogrammed software in Cisco SPA100 Series IP phones allows a perpetrator to execute arbitrary code with elevated privileges.
The vulnerability in the web interface for managing Microprogramming software in Cisco SPA100 Series IP phones is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code with elevated privileges using a...
The vulnerability in the web interface for managing microprogrammed software in Cisco SPA100 Series IP phones allows a perpetrator to execute arbitrary code with elevated privileges.
The vulnerability in the web interface for managing Microprogramming-based IP phones of the Cisco SPA100 Series is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code with elevated privileges using a...
Cisco SPA100 Series Analog Telephone Adapters Buffer Overflow Vulnerability (CNVD-2019-36458)
The Cisco SPA100 Series Analog Telephone Adapters ATAs are an SPA100 series of analog telephone adapters from Cisco USA. A buffer overflow vulnerability exists in the Cisco SPA100 Series ATAs, which arises from a program's failure to properly validate user-submitted input, and can be exploited to...
Cisco SPA100 Series Analog Telephone Adapters Buffer Overflow Vulnerability (CNVD-2019-36453)
The Cisco SPA100 Series Analog Telephone Adapters ATAs are an SPA100 series of analog telephone adapters from Cisco USA. A buffer overflow vulnerability exists in the Cisco SPA100 Series ATAs, which arises from a program's failure to properly validate user-submitted input, and can be exploited to...
Cisco SPA100 Information Disclosure Vulnerability (CNVD-2019-36888)
The Cisco SPA100 Series is an analog phone adapter from Cisco that allows your standard analog phone to access Internet telephony services through an RJ-11 phone port. A vulnerability exists in the Web-based management interface of the Cisco SPA100 Series 1.4.1 SR3 and earlier versions that...
Cisco SPA100 Remote Code Execution Vulnerability (CNVD-2019-36891)
The Cisco SPA100 Series is an analog phone adapter from Cisco that allows your standard analog phone to access Internet telephony services through an RJ-11 phone port. A remote code execution vulnerability exists in the Cisco SPA100 Series with firmware 1.4.1 SR4 and earlier. The vulnerability...
Cisco SPA100 Information Disclosure Vulnerability (CNVD-2019-36890)
The Cisco SPA100 Series is an analog phone adapter from Cisco that allows your standard analog phone to access Internet telephony services through an RJ-11 phone port. An information disclosure vulnerability exists in the Web-based management interface of the Cisco SPA100 Series 1.4.1 SR3 and...
Cisco Releases Security Updates
Cisco has released security updates to address vulnerabilities in Cisco products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities see the Cisco Security Advisories page. The Cybersecurity an...
Cisco SPA100 Denial of Service Vulnerability
The Cisco SPA100 Series is an analog phone adapter from Cisco that allows your standard analog phone to access Internet telephony services through an RJ-11 phone port. A denial of service vulnerability exists in the web-based management interface of Cisco SPA100 Series 1.4.1 SR3 and earlier. The...
CVE-2019-15258
A vulnerability in the web-based management interface of Cisco SPA100 Series Analog Telephone Adapters ATAs could allow an authenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper validation of user-supplied requests to the...
CVE-2019-15257
A vulnerability in the web-based management interface of Cisco SPA100 Series Analog Telephone Adapters ATAs could allow an authenticated, remote attacker to access sensitive information on an affected device. The vulnerability is due to improper restrictions on configuration information. An...
CVE-2019-15249
Multiple vulnerabilities in Cisco SPA100 Series Analog Telephone Adapters ATAs could allow an authenticated, adjacent attacker to execute arbitrary code with elevated privileges. The vulnerabilities are due to improper validation of user-supplied input to the web-based management interface. An...