2 matches found
CVE-2019-1923 Cisco Small Business SPA500 Series IP Phones Local Command Execution Vulnerability
A vulnerability in Cisco Small Business SPA500 Series IP Phones could allow a physically proximate attacker to execute arbitrary commands on the device. The vulnerability is due to improper input validation in the device configuration interface. An attacker could exploit this vulnerability by...
CVE-2019-1923
CVE-2019-1923 affects Cisco Small Business SPA500 Series IP Phones. The issue stems from improper input validation in the device configuration interface, enabling a physically proximate attacker to insert a USB device via the unit’s physical interface and execute arbitrary commands with elevated ...