Lucene search
K

86 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-6263

Malware in sbrugna...

8CVSS7.9AI score0.00578EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2019/11/19 12:0 a.m.5 views

The vulnerability in the web interface for controlling microprogrammed software in Cisco SPA100 Series IP phones allows a perpetrator to access confidential information.

The vulnerability in the web interface for managing microprogrammed IP telephone devices of the Cisco SPA100 series is related to the insecure processing of user credentials. Exploiting this vulnerability could allow a malicious actor to gain access to confidential information...

6.8CVSS6.8AI score0.01088EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2019/10/29 12:0 a.m.3 views

The vulnerability of the network web interface for controlling microprogrammed software in Cisco SPA100 Series IP phones allows a perpetrator to gain unauthorized access to read data.

The vulnerability of the network web interface for controlling Microprogrammed Software-IP Telephones of the Cisco SPA100 Series is caused by errors in the validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to read data...

6.8CVSS5.5AI score0.01565EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2019/10/29 12:0 a.m.9 views

The vulnerability of the network web interface for controlling microprogrammed software in Cisco SPA100 Series IP phones allows a perpetrator to gain unauthorized access to read data.

The vulnerability of the network web interface for controlling Cisco SPA100 Series IP phones is related to the lack of protection for operational data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to read data...

6.8CVSS5.5AI score0.01088EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2019/10/29 12:0 a.m.5 views

The vulnerability in the web interface for managing microprogrammed software in Cisco SPA100 Series IP phones allows a perpetrator to cause a service failure.

The vulnerability of the web interface for managing Microprogramming-based IP phones from the Cisco SPA100 series is related to errors during the verification of user requests sent to the web management interface. Exploiting this vulnerability can allow a malicious actor to cause service failures...

6.8CVSS5.5AI score0.01399EPSS
Exploits1References2
CNVD
CNVD
added 2019/10/24 12:0 a.m.4 views

Cisco SPA100 Series Analog Telephone Adapters Remote Code Execution Vulnerability (CNVD-2019-39613)

The Cisco SPA100 Series Analog Telephone Adapters ATAs are an SPA100 series analog telephone adapter. A remote code execution vulnerability exists in the Cisco SPA100 Series Analog Telephone Adapters that stems from not properly validating user input submitted to the web-based management interfac...

8CVSS8.5AI score0.00578EPSS
Exploits0References1
CNVD
CNVD
added 2019/10/24 12:0 a.m.2 views

Cisco SPA100 Series Analog Telephone Adapters Remote Code Execution Vulnerability

The Cisco SPA100 Series Analog Telephone Adapters ATAs are an SPA100 series analog telephone adapter. A remote code execution vulnerability exists in the Cisco SPA100 Series Analog Telephone Adapters that stems from not properly validating user input submitted to the web-based management interfac...

8CVSS8.5AI score0.00578EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2019/10/24 12:0 a.m.3 views

The vulnerability in the web interface for managing microprogrammed software in Cisco SPA100 Series IP phones allows a perpetrator to execute arbitrary code with elevated privileges.

The vulnerability in the web interface for managing Microprogramming software in Cisco SPA100 Series IP phones is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code with elevated privileges using a...

8CVSS6.4AI score0.00578EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2019/10/24 12:0 a.m.3 views

The vulnerability in the web interface for managing microprogrammed software in Cisco SPA100 Series IP phones allows a perpetrator to execute arbitrary code with elevated privileges.

The vulnerability in the web interface for managing Microprogramming software in Cisco SPA100 Series IP phones is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code with elevated privileges using a...

8CVSS6.4AI score0.00578EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2019/10/24 12:0 a.m.5 views

The vulnerability in the web interface for managing microprogrammed software in Cisco SPA100 Series IP phones allows a perpetrator to execute arbitrary code with elevated privileges.

The vulnerability in the web interface for managing Microprogramming-based IP phones of the Cisco SPA100 Series is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code with elevated privileges using a...

8CVSS6.4AI score0.00578EPSS
Exploits0References2Affected Software2
CNVD
CNVD
added 2019/10/18 12:0 a.m.2 views

Cisco SPA100 Series Analog Telephone Adapters Buffer Overflow Vulnerability (CNVD-2019-36458)

The Cisco SPA100 Series Analog Telephone Adapters ATAs are an SPA100 series of analog telephone adapters from Cisco USA. A buffer overflow vulnerability exists in the Cisco SPA100 Series ATAs, which arises from a program's failure to properly validate user-submitted input, and can be exploited to...

8CVSS8.1AI score0.00578EPSS
Exploits0References1
CNVD
CNVD
added 2019/10/18 12:0 a.m.3 views

Cisco SPA100 Series Analog Telephone Adapters Buffer Overflow Vulnerability (CNVD-2019-36453)

The Cisco SPA100 Series Analog Telephone Adapters ATAs are an SPA100 series of analog telephone adapters from Cisco USA. A buffer overflow vulnerability exists in the Cisco SPA100 Series ATAs, which arises from a program's failure to properly validate user-submitted input, and can be exploited to...

8CVSS8.1AI score0.00578EPSS
Exploits0References1
CNVD
CNVD
added 2019/10/17 12:0 a.m.4 views

Cisco SPA100 Information Disclosure Vulnerability (CNVD-2019-36888)

The Cisco SPA100 Series is an analog phone adapter from Cisco that allows your standard analog phone to access Internet telephony services through an RJ-11 phone port. A vulnerability exists in the Web-based management interface of the Cisco SPA100 Series 1.4.1 SR3 and earlier versions that...

6.5CVSS6.4AI score0.01088EPSS
Exploits0References1
CNVD
CNVD
added 2019/10/17 12:0 a.m.2 views

Cisco SPA100 Remote Code Execution Vulnerability (CNVD-2019-36891)

The Cisco SPA100 Series is an analog phone adapter from Cisco that allows your standard analog phone to access Internet telephony services through an RJ-11 phone port. A remote code execution vulnerability exists in the Cisco SPA100 Series with firmware 1.4.1 SR4 and earlier. The vulnerability...

8CVSS8.5AI score0.00578EPSS
Exploits0References1
CNVD
CNVD
added 2019/10/17 12:0 a.m.3 views

Cisco SPA100 Information Disclosure Vulnerability (CNVD-2019-36890)

The Cisco SPA100 Series is an analog phone adapter from Cisco that allows your standard analog phone to access Internet telephony services through an RJ-11 phone port. An information disclosure vulnerability exists in the Web-based management interface of the Cisco SPA100 Series 1.4.1 SR3 and...

6.5CVSS6.4AI score0.01565EPSS
Exploits0References1
CISA
CISA
added 2019/10/17 12:0 a.m.11 views

Cisco Releases Security Updates

Cisco has released security updates to address vulnerabilities in Cisco products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities see the Cisco Security Advisories page. The Cybersecurity an...

7.7AI score
Exploits0References7
CNVD
CNVD
added 2019/10/17 12:0 a.m.3 views

Cisco SPA100 Denial of Service Vulnerability

The Cisco SPA100 Series is an analog phone adapter from Cisco that allows your standard analog phone to access Internet telephony services through an RJ-11 phone port. A denial of service vulnerability exists in the web-based management interface of Cisco SPA100 Series 1.4.1 SR3 and earlier. The...

6.8CVSS6.9AI score0.01399EPSS
Exploits1References1
NVD
NVD
added 2019/10/16 7:15 p.m.18 views

CVE-2019-15258

A vulnerability in the web-based management interface of Cisco SPA100 Series Analog Telephone Adapters ATAs could allow an authenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper validation of user-supplied requests to the...

6.8CVSS6.4AI score0.01399EPSS
Exploits1References2
NVD
NVD
added 2019/10/16 7:15 p.m.30 views

CVE-2019-15257

A vulnerability in the web-based management interface of Cisco SPA100 Series Analog Telephone Adapters ATAs could allow an authenticated, remote attacker to access sensitive information on an affected device. The vulnerability is due to improper restrictions on configuration information. An...

6.5CVSS6.3AI score0.01088EPSS
Exploits0References2
NVD
NVD
added 2019/10/16 7:15 p.m.20 views

CVE-2019-15249

Multiple vulnerabilities in Cisco SPA100 Series Analog Telephone Adapters ATAs could allow an authenticated, adjacent attacker to execute arbitrary code with elevated privileges. The vulnerabilities are due to improper validation of user-supplied input to the web-based management interface. An...

8CVSS8.1AI score0.00578EPSS
Exploits0References1
Rows per page
Query Builder