cbcvebase.
CVE-2012-5445
published 2012-12-28

CVE-2012-5445: The kernel in Cisco Native Unix (CNU) on Cisco Unified IP Phone 7900 series devices (aka TNP phones) with software before 9.3.1-ES10 does not properly validate…

PriorityP428medium6.8CVSS 2.0
AVLACLAuSCCICAC
EPSS
0.40%
31.8th percentile
The kernel in Cisco Native Unix (CNU) on Cisco Unified IP Phone 7900 series devices (aka TNP phones) with software before 9.3.1-ES10 does not properly validate unspecified system calls, which allows attackers to execute arbitrary code or cause a denial of service (memory overwrite) via a crafted binary.

Affected

139 ranges· showing 25
VendorProductVersion rangeFixed in
ciscoskinny_client_control_protocol_software<= 9.2\(4\)
ciscoskinny_client_control_protocol_software
ciscoskinny_client_control_protocol_software
ciscoskinny_client_control_protocol_software
ciscoskinny_client_control_protocol_software
ciscoskinny_client_control_protocol_software
ciscoskinny_client_control_protocol_software
ciscoskinny_client_control_protocol_software
ciscoskinny_client_control_protocol_software
ciscoskinny_client_control_protocol_software
ciscoskinny_client_control_protocol_software
ciscoskinny_client_control_protocol_software
ciscoskinny_client_control_protocol_software
ciscoskinny_client_control_protocol_software
ciscoskinny_client_control_protocol_software
ciscoskinny_client_control_protocol_software
ciscoskinny_client_control_protocol_software
ciscoskinny_client_control_protocol_software
ciscoskinny_client_control_protocol_software
ciscoskinny_client_control_protocol_software
ciscoskinny_client_control_protocol_software
ciscoskinny_client_control_protocol_software
ciscoskinny_client_control_protocol_software
ciscoskinny_client_control_protocol_software
ciscoskinny_client_control_protocol_software

CVSS provenance

nvdv2.06.8MEDIUMAV:L/AC:L/Au:S/C:C/I:C/A:C
vendor_cisco6.8MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.