CVE-2024-20357 — Out-of-bounds Write in Cisco Video Phone 8875 Firmware

CWE-787 — Out-of-bounds Write CWE-305 — Authentication Bypass by Primary Weakness4 documents4 sources

Severity

5.9MEDIUMNVD

EPSS

0.6%

top 30.28%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Video Phone 8875 Firmware Cisco IP Phone 6821 With Multiplatform Firmware Cisco IP Phone 6841 With Multiplatform Firmware +17 more

Timeline

PublishedMay 1

Description

A vulnerability in the XML service of Cisco IP Phone firmware could allow an unauthenticated, remote attacker to initiate phone calls on an affected device. This vulnerability exists because bounds-checking does not occur while parsing XML requests. An attacker could exploit this vulnerability by sending a crafted XML request to an affected device. A successful exploit could allow the attacker to initiate calls or play sounds on the device.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:NExploitability: 2.2 | Impact: 3.6

Affected Packages20 packages

▶NVDcisco/video_phone_8875_firmware< 2.3.1.0101

▶NVDcisco/ip_phone_6821_with_multiplatform_firmware12.0.4

▶NVDcisco/ip_phone_6841_with_multiplatform_firmware12.0.4

▶NVDcisco/ip_phone_6851_with_multiplatform_firmware12.0.4

▶NVDcisco/ip_phone_6861_with_multiplatform_firmware12.0.4

🔴Vulnerability Details

GHSA

GHSA-49gp-r5pw-pqg8: A vulnerability in the XML service of Cisco IP Phone firmware could allow an unauthenticated, remote attacker to initiate phone calls on an affected d↗2024-05-01

▶

CVEList

CVE-2024-20357: A vulnerability in the XML service of Cisco IP Phone firmware could allow an unauthenticated, remote attacker to initiate phone calls on an affected d↗2024-05-01

▶

📋Vendor Advisories

Cisco

Cisco IP Phone 6800, 7800, and 8800 Series with Multiplatform Firmware Vulnerabilities↗2024-05-01

▶