Cisco Ip Phone vulnerabilities

CVE-2020-3161 [CRITICAL] CWE-20 CVE-2020-3161: A vulnerability in the web server for Cisco IP Phones could allow an unauthenticated, remote attacke A vulnerability in the web server for Cisco IP Phones could allow an unauthenticated, remote attacker to execute code with root privileges or cause a reload of an affected IP phone, resulting in a denial of service (DoS) condition. The vulnerability is due to a lack of proper input validation of HTTP requests. An attacker could exploit this vulnerabi

CVE-2020-3111 [HIGH] CWE-20 CVE-2020-3111: A vulnerability in the Cisco Discovery Protocol implementation for the Cisco IP Phone could allow an A vulnerability in the Cisco Discovery Protocol implementation for the Cisco IP Phone could allow an unauthenticated, adjacent attacker to remotely execute code with root privileges or cause a reload of an affected IP phone. The vulnerability is due to missing checks when processing Cisco Discovery Protocol messages. An attacker could exploit this vulner