- EPSS 0.35%
- Veröffentlicht 07.02.2015 15:59:08
- Zuletzt bearbeitet 12.04.2025 10:46:40
The mobility extension on Cisco Unified IP 9900 phones with firmware 9.4(.1) and earlier allows remote attackers to obtain sensitive information by sniffing the network, aka Bug ID CSCuq12117.
- EPSS 0.93%
- Veröffentlicht 07.02.2015 15:59:07
- Zuletzt bearbeitet 12.04.2025 10:46:40
The mobility extension on Cisco Unified IP 9900 phones with firmware 9.4(.1) and earlier allows remote attackers to cause a denial of service (logoff) via crafted packets, aka Bug ID CSCuq12139.
CVE-2015-0603
- EPSS 0.06%
- Veröffentlicht 07.02.2015 04:59:06
- Zuletzt bearbeitet 12.04.2025 10:46:40
Cisco Unified IP 9900 phones with firmware 9.4(.1) and earlier use weak permissions for unspecified files, which allows local users to cause a denial of service (persistent hang or reboot) by writing to a phone's filesystem, aka Bug ID CSCup90474.
CVE-2014-0658
- EPSS 1.75%
- Veröffentlicht 10.01.2014 16:47:06
- Zuletzt bearbeitet 11.04.2025 00:51:21
Cisco 9900 Unified IP phones allow remote attackers to cause a denial of service (unregistration) via a crafted SIP header, aka Bug ID CSCul24898.
- EPSS 0.81%
- Veröffentlicht 11.10.2013 03:54:53
- Zuletzt bearbeitet 11.04.2025 00:51:21
Buffer overflow in the web-application interface on Cisco 9900 IP phones allows remote attackers to cause a denial of service (webapp interface outage) via long values in unspecified fields, aka Bug ID CSCuh10343.
- EPSS 0.26%
- Veröffentlicht 11.10.2013 03:54:53
- Zuletzt bearbeitet 11.04.2025 00:51:21
The image-upgrade functionality on Cisco 9900 Unified IP phones allows local users to gain privileges by placing shell commands in an unspecified parameter, aka Bug ID CSCuh10334.
- EPSS 0.38%
- Veröffentlicht 18.07.2013 12:51:14
- Zuletzt bearbeitet 11.04.2025 00:51:21
The Serviceability servlet on Cisco 9900 IP phones does not properly restrict paths, which allows remote attackers to read arbitrary files by specifying a pathname in a file request, aka Bug ID CSCuh52810.