Cisco

Ip Phone 8861 Firmware

20 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2020-26139

  • EPSS 0.41%
  • Published 11.05.2021 20:15:08
  • Last modified 21.11.2024 05:19:20

An issue was discovered in the kernel in NetBSD 7.1. An Access Point (AP) forwards EAPOL frames to other clients even though the sender has not yet successfully authenticated to the AP. This might be abused in projected Wi-Fi networks to launch denia...

3.5

CVE-2020-24588

Exploit
  • EPSS 0.56%
  • Published 11.05.2021 20:15:08
  • Last modified 21.11.2024 05:15:05

The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP...

2.6

CVE-2020-24587

Exploit
  • EPSS 0.3%
  • Published 11.05.2021 20:15:08
  • Last modified 21.11.2024 05:15:05

The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that all fragments of a frame are encrypted under the same key. An adversary can abuse this to decrypt selected fragmen...

7.8

CVE-2020-3574

  • EPSS 0.25%
  • Published 06.11.2020 19:15:14
  • Last modified 21.11.2024 05:31:20

A vulnerability in the TCP packet processing functionality of Cisco IP Phones could allow an unauthenticated, remote attacker to cause the phone to stop responding to incoming calls, drop connected calls, or unexpectedly reload. The vulnerability is ...

10

CVE-2020-3161

Warning Exploit
  • EPSS 80.83%
  • Published 15.04.2020 20:15:15
  • Last modified 24.02.2025 16:14:27

A vulnerability in the web server for Cisco IP Phones could allow an unauthenticated, remote attacker to execute code with root privileges or cause a reload of an affected IP phone, resulting in a denial of service (DoS) condition. The vulnerability ...

8.8

CVE-2020-3111

  • EPSS 0.23%
  • Published 05.02.2020 18:15:10
  • Last modified 21.11.2024 05:30:20

A vulnerability in the Cisco Discovery Protocol implementation for the Cisco IP Phone could allow an unauthenticated, adjacent attacker to remotely execute code with root privileges or cause a reload of an affected IP phone. The vulnerability is due ...

5.4

CVE-2019-16008

  • EPSS 0.29%
  • Published 26.01.2020 05:15:14
  • Last modified 21.11.2024 04:29:55

A vulnerability in the web-based GUI of Cisco IP Phone 6800, 7800, and 8800 Series with Multiplatform Firmware could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based interface of a...

7.8

CVE-2019-1922

  • EPSS 0.78%
  • Published 06.07.2019 02:15:11
  • Last modified 21.11.2024 04:37:41

A vulnerability in Cisco SIP IP Phone Software for Cisco IP Phone 7800 Series and 8800 Series could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected phone. The vulnerability is due to insufficient ...

7.8

CVE-2019-1635

  • EPSS 1.16%
  • Published 03.05.2019 15:29:00
  • Last modified 21.11.2024 04:36:58

A vulnerability in the call-handling functionality of Session Initiation Protocol (SIP) Software for Cisco IP Phone 7800 Series and 8800 Series could allow an unauthenticated, remote attacker to cause an affected phone to reload unexpectedly, resulti...

6.5

CVE-2019-1684

  • EPSS 0.15%
  • Published 21.02.2019 20:29:00
  • Last modified 21.11.2024 04:37:05

A vulnerability in the Cisco Discovery Protocol or Link Layer Discovery Protocol (LLDP) implementation for the Cisco IP Phone 7800 and 8800 Series could allow an unauthenticated, adjacent attacker to cause an affected phone to reload unexpectedly, re...