Cisco

Ip Phone 8821 Firmware

10 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2023-20018

  • EPSS 0.08%
  • Published 20.01.2023 07:15:13
  • Last modified 21.11.2024 07:40:21

A vulnerability in the web-based management interface of Cisco IP Phone 7800 and 8800 Series Phones could allow an unauthenticated, remote attacker to bypass authentication on an affected device. This vulnerability is due to insufficient validatio...

2.6

CVE-2020-24587

Exploit
  • EPSS 0.3%
  • Published 11.05.2021 20:15:08
  • Last modified 21.11.2024 05:15:05

The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that all fragments of a frame are encrypted under the same key. An adversary can abuse this to decrypt selected fragmen...

3.5

CVE-2020-24588

Exploit
  • EPSS 0.56%
  • Published 11.05.2021 20:15:08
  • Last modified 21.11.2024 05:15:05

The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP...

5.3

CVE-2020-26139

  • EPSS 0.41%
  • Published 11.05.2021 20:15:08
  • Last modified 21.11.2024 05:19:20

An issue was discovered in the kernel in NetBSD 7.1. An Access Point (AP) forwards EAPOL frames to other clients even though the sender has not yet successfully authenticated to the AP. This might be abused in projected Wi-Fi networks to launch denia...

6.5

CVE-2020-26140

  • EPSS 0.43%
  • Published 11.05.2021 20:15:08
  • Last modified 21.11.2024 05:19:20

An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The WEP, WPA, WPA2, and WPA3 implementations accept plaintext frames in a protected Wi-Fi network. An adversary can abuse this to inject arbitrary data frames independent...

10

CVE-2020-3161

Warning Exploit
  • EPSS 80.83%
  • Published 15.04.2020 20:15:15
  • Last modified 24.02.2025 16:14:27

A vulnerability in the web server for Cisco IP Phones could allow an unauthenticated, remote attacker to execute code with root privileges or cause a reload of an affected IP phone, resulting in a denial of service (DoS) condition. The vulnerability ...

9.8

CVE-2019-1716

  • EPSS 7.27%
  • Published 22.03.2019 20:29:00
  • Last modified 21.11.2024 04:37:09

A vulnerability in the web-based management interface of Session Initiation Protocol (SIP) Software for Cisco IP Phone 7800 Series and Cisco IP Phone 8800 Series could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condi...

7.5

CVE-2019-1763

  • EPSS 1.34%
  • Published 22.03.2019 20:29:00
  • Last modified 21.11.2024 04:37:19

A vulnerability in the web-based management interface of Session Initiation Protocol (SIP) Software for Cisco IP Phone 8800 Series could allow an unauthenticated, remote attacker to bypass authorization, access critical services, and cause a denial o...

8.8

CVE-2019-1764

  • EPSS 0.22%
  • Published 22.03.2019 20:29:00
  • Last modified 21.11.2024 04:37:19

A vulnerability in the web-based management interface of Session Initiation Protocol (SIP) Software for Cisco IP Phone 8800 Series could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack. The vulnerabilit...

6.5

CVE-2019-1765

  • EPSS 0.13%
  • Published 22.03.2019 20:29:00
  • Last modified 21.11.2024 04:37:19

A vulnerability in the web-based management interface of Session Initiation Protocol (SIP) Software for Cisco IP Phone 8800 Series could allow an authenticated, remote attacker to write arbitrary files to the filesystem. The vulnerability is due to i...