cbcvebase.

Cisco Skinny Client Control Protocol Software vulnerabilities

8 known vulnerabilities affecting cisco/skinny_client_control_protocol_software.

Total CVEs
8
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM6LOW2

Vulnerabilities

Page 1 of 1
CVE-2012-5445P4MEDIUMCVSS 6.8≤ 9.2\(4\)v1.0\(1\)+119 more2012-12-28
CVE-2012-5445 [MEDIUM] CWE-20 CVE-2012-5445: The kernel in Cisco Native Unix (CNU) on Cisco Unified IP Phone 7900 series devices (aka TNP phones) The kernel in Cisco Native Unix (CNU) on Cisco Unified IP Phone 7900 series devices (aka TNP phones) with software before 9.3.1-ES10 does not properly validate unspecified system calls, which allows attackers to execute arbitrary code or cause a denial of service (memory overwrite) via a crafted binary.
nvd
CVE-2018-15434P4MEDIUMCVSS 6.1v9.4\(2\)2018-10-05
CVE-2018-15434 [MEDIUM] CWE-79 CVE-2018-15434: A vulnerability in the web-based management interface of Cisco Unified IP Phone 7900 Series could al A vulnerability in the web-based management interface of Cisco Unified IP Phone 7900 Series could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. The vulnerability is due to insufficient validation of user-supplied input by the web-bas
nvd
CVE-2011-1603P4MEDIUMCVSS 6.6≤ 9.1\(1\)v1.0\(1\)+115 more2011-06-02
CVE-2011-1603 [MEDIUM] CWE-264 CVE-2011-1603: Cisco Unified IP Phones 7900 devices (aka TNP phones) with software before 9.2.1 allow local users t Cisco Unified IP Phones 7900 devices (aka TNP phones) with software before 9.2.1 allow local users to gain privileges via unspecified vectors, aka Bug ID CSCtn65815.
nvd
CVE-2011-1602P4MEDIUMCVSS 6.6≤ 9.0\(2\)v1.0\(1\)+114 more2011-06-02
CVE-2011-1602 [MEDIUM] CWE-264 CVE-2011-1602: The su utility on Cisco Unified IP Phones 7900 devices (aka TNP phones) with software before 9.0.3 a The su utility on Cisco Unified IP Phones 7900 devices (aka TNP phones) with software before 9.0.3 allows local users to gain privileges via unspecified vectors, aka Bug ID CSCtf07426.
nvd
CVE-2002-0882P4MEDIUMCVSS 6.4v3.0v3.1+1 more2002-10-04
CVE-2002-0882 [MEDIUM] CVE-2002-0882: The web server for Cisco IP Phone (VoIP) models 7910, 7940, and 7960 allows remote attackers to caus The web server for Cisco IP Phone (VoIP) models 7910, 7940, and 7960 allows remote attackers to cause a denial of service (reset) and possibly read sensitive memory via a large integer value in (1) the stream ID of the StreamingStatistics script, or (2) the port ID of the PortInformation script.
nvd
CVE-2002-0880P4MEDIUMCVSS 5.0v3.0v3.1+1 more2002-10-04
CVE-2002-0880 [MEDIUM] CVE-2002-0880: Cisco IP Phone (VoIP) models 7910, 7940, and 7960 allow remote attackers to cause a denial of servic Cisco IP Phone (VoIP) models 7910, 7940, and 7960 allow remote attackers to cause a denial of service (crash) via malformed packets as demonstrated by (1) "jolt", (2) "jolt2", (3) "raped", (4) "hping2", (5) "bloop", (6) "bubonic", (7) "mutant", (8) "trash", and (9) "trash2."
nvd
CVE-2011-1637P4LOWCVSS 1.5≤ 9.1\(1\)v1.0\(1\)+115 more2011-06-02
CVE-2011-1637 [LOW] CWE-264 CVE-2011-1637: Cisco Unified IP Phones 7900 devices (aka TNP phones) with software before 9.2.1 do not properly ver Cisco Unified IP Phones 7900 devices (aka TNP phones) with software before 9.2.1 do not properly verify signatures for software images, which allows local users to gain privileges via a crafted image, aka Bug ID CSCtn65962.
nvd
CVE-2002-0881P4LOWCVSS 2.1v3.0v3.1+1 more2002-10-04
CVE-2002-0881 [LOW] CVE-2002-0881: Cisco IP Phone (VoIP) models 7910, 7940, and 7960 use a default administrative password, which allow Cisco IP Phone (VoIP) models 7910, 7940, and 7960 use a default administrative password, which allows attackers with physical access to the phone to modify the configuration settings.
nvd