CPE-60770F96-294B-4446-9143-66A8486679E8 Detail

CPE Details

Cisco IP Phone 8800 Series Firmware 11.0(1)

Vendor

cisco

Product

ip_phone_8800_series_firmware

Version

11.0\(1\)

Created

2016-04-25
12h07 +00:00

Modified

2016-04-25
12h07 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:o:cisco:ip_phone_8800_series_firmware:11.0\(1\):::::::*

Informations

Vendor

cisco

Product

ip_phone_8800_series_firmware

Version

11.0\(1\)

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2017-12305	2017-11-16 06h00 +00:00	A vulnerability in the debug interface of Cisco IP Phone 8800 series could allow an authenticated, local attacker to execute arbitrary commands, aka Debug Shell Command Injection. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by authenticating to the device and submitting additional command input to the affected parameter in the debug shell. Cisco Bug IDs: CSCvf80034.	6.7	Medium
CVE-2016-1479	2016-08-22 08h00 +00:00	Cisco IP Phone 8800 devices with software 11.0(1) allow remote attackers to cause a denial of service (memory corruption) via a crafted HTTP request, aka Bug ID CSCuz03038.	7.5	High
CVE-2016-1434	2016-06-22 22h00 +00:00	The license-certificate upload functionality on Cisco 8800 phones with software 11.0(1) allows remote authenticated users to delete arbitrary files via an invalid file, aka Bug ID CSCuz03010.	6.5	Medium
CVE-2016-1435	2016-06-22 22h00 +00:00	Cisco 8800 phones with software 11.0(1) do not properly enforce mounted-filesystem permissions, which allows local users to write to arbitrary files by leveraging shell access, aka Bug ID CSCuz03014.	7	High
CVE-2016-1421	2016-06-09 23h00 +00:00	A vulnerability in the web application for Cisco IP Phones could allow an unauthenticated, remote attacker to execute code with root privileges or cause a reload of an affected IP phone, resulting in a denial of service (DoS) condition. The vulnerability exists because the affected software fails to check the bounds of input data. An attacker could exploit this vulnerability by sending a crafted HTTP request to the web server of a targeted device. A successful exploit could allow the attacker to remotely execute code with root privileges or cause a reload of an affected IP phone, resulting in a DoS condition.	7.5	High
CVE-2016-1403	2016-06-04 12h00 +00:00	CISCO IP 8800 phones with software 11.0.1 and earlier allow local users to gain privileges for OS command execution via crafted CLI commands, aka Bug ID CSCuz03005.	7.8	High
CVE-2015-6360	2016-04-21 08h00 +00:00	The encryption-processing feature in Cisco libSRTP before 1.5.3 allows remote attackers to cause a denial of service via crafted fields in SRTP packets, aka Bug ID CSCux00686.	7.5	High

Cisco IP Phone 8800 Series Firmware 11.0(1)

CPE Details

CPE Name: cpe:2.3:o:cisco:ip_phone_8800_series_firmware:11.0\(1\):*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:o:cisco:ip_phone_8800_series_firmware:11.0\(1\):::::::*