11 matches found
CVE-2008-1113
Cisco Unified Wireless IP Phone 7921, when using Protected Extensible Authentication Protocol PEAP, does not validate server certificates, which allows remote wireless access points to steal hashed passwords and conduct man-in-the-middle MITM attacks...
CVE-2021-33478
The TrustZone implementation in certain Broadcom MediaxChange firmware could allow an unauthenticated, physically proximate attacker to achieve arbitrary code execution in the TrustZone Trusted Execution Environment TEE of an affected device. This, for example, affects certain Cisco IP Phone and...
Code injection
The TrustZone implementation in certain Broadcom MediaxChange firmware could allow an unauthenticated, physically proximate attacker to achieve arbitrary code execution in the TrustZone Trusted Execution Environment TEE of an affected device. This, for example, affects certain Cisco IP Phone and...
CVE-2021-33478
The TrustZone implementation in certain Broadcom MediaxChange firmware could allow an unauthenticated, physically proximate attacker to achieve arbitrary code execution in the TrustZone Trusted Execution Environment TEE of an affected device. This, for example, affects certain Cisco IP Phone and...
CVE-2021-33478
The CVE-2021-33478 issue concerns the TrustZone implementation in Broadcom MediaxChange firmware, affecting Cisco IP Phone and Wireless IP Phone devices. The vulnerability allows an unauthenticated, physically proximate attacker to achieve arbitrary code execution in the TrustZone TEE, with explo...
CVE-2019-1764
A vulnerability in the web-based management interface of Session Initiation Protocol SIP Software for Cisco IP Phone 8800 Series could allow an unauthenticated, remote attacker to conduct a cross-site request forgery CSRF attack. The vulnerability is due to insufficient CSRF protections for the...
CVE-2019-1716 Cisco IP Phone 7800 Series and 8800 Series Remote Code Execution Vulnerability
A vulnerability in the web-based management interface of Session Initiation Protocol SIP Software for Cisco IP Phone 7800 Series and Cisco IP Phone 8800 Series could allow an unauthenticated, remote attacker to cause a denial of service DoS condition or execute arbitrary code. The vulnerability...
Linksys SPA-2102 wireless IP phones DoS
Large ICMP packets cause device to crash...
CVE-2006-0360
MPM SIP HP-180W Wireless IP Phone WE.00.17 allows remote attackers to obtain sensitive information and possibly cause a denial of service via a direct connection to UDP port 9090, which is undocumented and does not require authentication...
CVE-2006-0360
The CVE-2006-0360 entry affects the MPM SIP HP-180W Wireless IP Phone WE.00.17. An unauthenticated remote access path exists via UDP port 9090 (undocumented), enabling potential exposure of sensitive information and a possible denial of service. The description specifies no authentication require...
Cisco Security Advisory: Fixed SNMP Communities and Open UDP Port in Cisco 7920 Wireless IP Phone
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Fixed SNMP Communities and Open UDP Port in Cisco 7920 Wireless IP Phone Document ID: 68179 Advisory ID: cisco-sa-20051116-7920 http://www.cisco.com/warp/public/707/cisco-sa-20051116-7920.shtml Revision 1.0 For Public Release...