Lucene search
K
CiscoIp Phone 7832 Firmware

7 matches found

CVE
CVE
added 2023/03/03 12:0 a.m.225 views

CVE-2023-20078

Cisco IP Phones (6800, 7800, 7900, 8800 series) web-based management interface contains multiple vulnerabilities due to insufficient input validation that can allow an unauthenticated attacker to execute arbitrary code (CVE-2023-20078) or cause a DoS (CVE-2023-20079). Cisco cites a command-inject...

9.8CVSS9.9AI score0.10351EPSS
CVE
CVE
added 2023/03/03 12:0 a.m.167 views

CVE-2023-20079

CVE-2023-20079 affects Cisco IP Phones (6800/7800/7900/8800 series) via the web-based management interface. The root cause is insufficient validation of user-supplied input in the web UI, enabling an unauthenticated, remote attacker to trigger a denial-of-service condition (DoS). Public details i...

9.8CVSS9.2AI score0.10314EPSS
CVE
CVE
added 2023/01/19 1:35 a.m.146 views

CVE-2023-20018

CVE-2023-20018 affects Cisco IP Phone 7800 and 8800 Series through the web-based management interface. The issue is an authentication bypass caused by insufficient validation of user-supplied input, enabling an unauthenticated, remote attacker to access parts of the web interface that normally re...

8.6CVSS6.6AI score0.00613EPSS
CVE
CVE
added 2020/01/26 4:45 a.m.145 views

CVE-2019-16008

Cisco IP Phone 6800/7800/8800 Series with Multiplatform Firmware expose a cross-site scripting (XSS) vulnerability in the web‑based GUI due to insufficient input validation. An authenticated, remote attacker could entice a user to click a crafted link, allowing arbitrary script execution or acces...

5.4CVSS5.2AI score0.00633EPSS
CVE
CVE
added 2022/12/08 4:13 p.m.136 views

CVE-2022-20968

Affected product/versions: Cisco IP Phone 7800 and 8800 Series firmware (prior to 14.2(1)). Vulnerability: Cisco Discovery Protocol (CDP) processing feature accepts crafted CDP packets due to insufficient input validation, enabling an unauthenticated, adjacent attacker to trigger a stack overflow...

8.8CVSS8.9AI score0.06099EPSS
CVE
CVE
added 2022/04/06 6:12 p.m.96 views

CVE-2022-20774

CVE-2022-20774 affects Cisco IP Phone 6800, 7800, and 8800 Series with Multiplatform Firmware. The issue is an insufficient CSRF protection in the web-based management interface, enabling an unauthenticated attacker to induce a logged-in user to perform actions via a crafted link. Successful expl...

8.1CVSS7.4AI score0.00383EPSS
CVE
CVE
added 2021/10/06 7:46 p.m.60 views

CVE-2021-34711

CVE-2021-34711 affects Cisco IP Phone software. A vulnerability in the debug shell allows an authenticated, local attacker to read arbitrary files on the device filesystem due to insufficient input validation. The issue is triggered by crafted input to a debug shell command. The impact is read ac...

5.5CVSS5.2AI score0.00258EPSS