CVE-2018-0461
- EPSS 0.27%
- Veröffentlicht 10.01.2019 16:29:00
- Zuletzt bearbeitet 21.11.2024 03:38:16
A vulnerability in the Cisco IP Phone 8800 Series Software could allow an unauthenticated, remote attacker to conduct an arbitrary script injection attack on an affected device. The vulnerability exists because the software running on an affected dev...
CVE-2017-12305
- EPSS 0.33%
- Veröffentlicht 16.11.2017 07:29:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
A vulnerability in the debug interface of Cisco IP Phone 8800 series could allow an authenticated, local attacker to execute arbitrary commands, aka Debug Shell Command Injection. The vulnerability is due to insufficient input validation. An attacker...
CVE-2016-1476
- EPSS 0.19%
- Veröffentlicht 22.08.2016 10:59:02
- Zuletzt bearbeitet 12.04.2025 10:46:40
Cross-site scripting (XSS) vulnerability on Cisco IP Phone 8800 devices with software 11.0 allows remote authenticated users to inject arbitrary web script or HTML via crafted parameters, aka Bug ID CSCuz03024.
CVE-2016-1403
- EPSS 0.26%
- Veröffentlicht 04.06.2016 14:59:01
- Zuletzt bearbeitet 12.04.2025 10:46:40
CISCO IP 8800 phones with software 11.0.1 and earlier allow local users to gain privileges for OS command execution via crafted CLI commands, aka Bug ID CSCuz03005.