Cisco Ip Phone 8800 Series Software vulnerabilities

5 known vulnerabilities affecting cisco/cisco_ip_phone_8800_series_software.

Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH3MEDIUM2

Vulnerabilities

Page 1 of 1
CVE-2020-3360MEDIUMCVSS 5.3vn/a2020-06-18
CVE-2020-3360 [MEDIUM] CWE-200 CVE-2020-3360: A vulnerability in the Web Access feature of Cisco IP Phones Series 7800 and Series 8800 could allow A vulnerability in the Web Access feature of Cisco IP Phones Series 7800 and Series 8800 could allow an unauthenticated, remote attacker to view sensitive information on an affected device. The vulnerability is due to improper access controls on the web-based management interface of an affected device. An attacker could exploit this vulnerability by s
cvelistv5nvd
CVE-2019-1922HIGHCVSS 7.5≥ unspecified, < 12.0(1)MN1302019-07-06
CVE-2019-1922 [HIGH] CWE-476 CVE-2019-1922: A vulnerability in Cisco SIP IP Phone Software for Cisco IP Phone 7800 Series and 8800 Series could A vulnerability in Cisco SIP IP Phone Software for Cisco IP Phone 7800 Series and 8800 Series could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected phone. The vulnerability is due to insufficient validation of input Session Initiation Protocol (SIP) packets. An attacker could exploit this vulnerabilit
cvelistv5nvd
CVE-2019-1766HIGHCVSS 7.5≥ unspecified, < 12.5(1)SR12019-03-22
CVE-2019-1766 [HIGH] CWE-20 CVE-2019-1766: A vulnerability in the web-based management interface of Session Initiation Protocol (SIP) Software A vulnerability in the web-based management interface of Session Initiation Protocol (SIP) Software for Cisco IP Phone 8800 Series could allow an unauthenticated, remote attacker to cause high disk utilization, resulting in a denial of service (DoS) condition. The vulnerability exists because the affected software does not restrict the maximum size of cer
cvelistv5nvd
CVE-2019-1684MEDIUMCVSS 6.5≥ unspecified, < 12.6(1)MN802019-02-21
CVE-2019-1684 [MEDIUM] CWE-399 CVE-2019-1684: A vulnerability in the Cisco Discovery Protocol or Link Layer Discovery Protocol (LLDP) implementati A vulnerability in the Cisco Discovery Protocol or Link Layer Discovery Protocol (LLDP) implementation for the Cisco IP Phone 7800 and 8800 Series could allow an unauthenticated, adjacent attacker to cause an affected phone to reload unexpectedly, resulting in a temporary denial of service (DoS) condition. The vulnerability is due to missing length va
cvelistv5nvd
CVE-2018-0461HIGHCVSS 8.8vn/a2019-01-10
CVE-2018-0461 [HIGH] CWE-94 CVE-2018-0461: A vulnerability in the Cisco IP Phone 8800 Series Software could allow an unauthenticated, remote at A vulnerability in the Cisco IP Phone 8800 Series Software could allow an unauthenticated, remote attacker to conduct an arbitrary script injection attack on an affected device. The vulnerability exists because the software running on an affected device insufficiently validates user-supplied data. An attacker could exploit this vulnerability by persuadin
cvelistv5nvd