Cisco IP Phone 8800 Series Firmware 12.5(1)

CPE Details

Cisco IP Phone 8800 Series Firmware 12.5(1)
cisco
ip_phone_8800_series_firmware
12.5\(1\)
2019-01-17
14h09 +00:00
2021-06-17
13h12 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:o:cisco:ip_phone_8800_series_firmware:12.5\(1\):*:*:*:*:*:*:*

Informations

Vendor

cisco

Product

ip_phone_8800_series_firmware

Version

12.5\(1\)

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2018-0461 2019-01-10 16h00 +00:00 A vulnerability in the Cisco IP Phone 8800 Series Software could allow an unauthenticated, remote attacker to conduct an arbitrary script injection attack on an affected device. The vulnerability exists because the software running on an affected device insufficiently validates user-supplied data. An attacker could exploit this vulnerability by persuading a user to click a malicious link provided to the user or through the interface of an affected device. A successful exploit could allow an attacker to execute arbitrary script code in the context of the user interface or access sensitive system-based information, which under normal circumstances should be prohibited.
8.8
Haute
CVE-2017-12305 2017-11-16 06h00 +00:00 A vulnerability in the debug interface of Cisco IP Phone 8800 series could allow an authenticated, local attacker to execute arbitrary commands, aka Debug Shell Command Injection. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by authenticating to the device and submitting additional command input to the affected parameter in the debug shell. Cisco Bug IDs: CSCvf80034.
6.7
Moyen