Unified Ip Phone 9971@* Security Vulnerabilities and Issues — Unified Ip Phone 9971@* CVE List

Lucene search

CiscoUnified Ip Phone 9971*

5 matches found

CVE•added 2013/07/18 12:51 p.m.•46 views

CVE-2013-3426

The Serviceability servlet on Cisco 9900 IP phones does not properly restrict paths, which allows remote attackers to read arbitrary files by specifying a pathname in a file request, aka Bug ID CSCuh52810.

5CVSS6.8AI score0.00375EPSS

CVE•added 2013/11/13 3:55 p.m.•40 views

CVE-2013-6685

The firmware on Cisco Unified IP phones 8961, 9951, and 9971 uses weak permissions for memory block devices, which allows local users to gain privileges by mounting a device with a setuid file in its filesystem, aka Bug ID CSCui04382.

6.6CVSS6.8AI score0.00061EPSS

CVE•added 2013/10/11 3:54 a.m.•37 views

CVE-2013-5532

Buffer overflow in the web-application interface on Cisco 9900 IP phones allows remote attackers to cause a denial of service (webapp interface outage) via long values in unspecified fields, aka Bug ID CSCuh10343.

5CVSS7.1AI score0.0081EPSS

CVE•added 2013/10/11 3:54 a.m.•35 views

CVE-2013-5533

The image-upgrade functionality on Cisco 9900 Unified IP phones allows local users to gain privileges by placing shell commands in an unspecified parameter, aka Bug ID CSCuh10334.

6CVSS7AI score0.00258EPSS

CVE•added 2013/10/10 10:55 a.m.•33 views

CVE-2013-5526

Cisco 9900 fourth-generation IP phones do not properly perform SDP negotiation, which allows remote attackers to cause a denial of service (device reboot) via crafted SDP packets, aka Bug ID CSCuf06698.

7.1CVSS6.8AI score0.00774EPSS